CN114449540A - Method, device and computer readable storage medium for updating configuration between access devices - Google Patents

Method, device and computer readable storage medium for updating configuration between access devices Download PDF

Info

Publication number
CN114449540A
CN114449540A CN202011188988.0A CN202011188988A CN114449540A CN 114449540 A CN114449540 A CN 114449540A CN 202011188988 A CN202011188988 A CN 202011188988A CN 114449540 A CN114449540 A CN 114449540A
Authority
CN
China
Prior art keywords
configuration
equipment
networking
configuration updating
updating
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202011188988.0A
Other languages
Chinese (zh)
Inventor
张艳
彭华熹
何申
付俊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Mobile Communications Group Co Ltd
China Mobile Communications Ltd Research Institute
Original Assignee
China Mobile Communications Group Co Ltd
China Mobile Communications Ltd Research Institute
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Mobile Communications Group Co Ltd, China Mobile Communications Ltd Research Institute filed Critical China Mobile Communications Group Co Ltd
Priority to CN202011188988.0A priority Critical patent/CN114449540A/en
Publication of CN114449540A publication Critical patent/CN114449540A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W24/00Supervisory, monitoring or testing arrangements
    • H04W24/02Arrangements for optimising operational condition

Abstract

The embodiment of the invention provides a method, a device and a computer readable storage medium for updating configuration between access devices, wherein the method comprises the following steps: the access equipment constructs configuration updating information based on the new networking parameters and sends the configuration updating information to the configuration updating main equipment; receiving a configuration update message chain sent by the configuration update master device; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device; and verifying the final networking parameters based on the configuration updating information sent by each access device.

Description

Method, device and computer readable storage medium for updating configuration between access devices
Technical Field
The present invention relates to the field of mobile communications technologies, and in particular, to a method and an apparatus for updating configuration between access devices, and a computer-readable storage medium.
Background
The wireless Mesh network provides a security configuration method among a plurality of access devices, and when networking parameters of the wireless Mesh network change, updated configuration needs to be synchronized to all the access devices so as to realize networking among the access devices.
In the related synchronous configuration method, one router can synchronize the configuration to other routers for updating. However, in this way, other routers cannot verify the authenticity of the configuration update content, and by performing a denial-of-service attack on the router responsible for configuration synchronization, the configuration update of the whole network may be interrupted, which presents a security risk.
Disclosure of Invention
In view of the above, embodiments of the present invention are intended to provide an inter-access device configuration updating method, apparatus, and computer-readable storage medium.
In order to achieve the above purpose, the technical solution of the embodiment of the present invention is realized as follows:
the embodiment of the invention provides a method for updating configuration between access devices, which is applied to the access devices and comprises the following steps:
constructing configuration updating information based on the new networking parameters and sending the configuration updating information to the configuration updating main equipment;
receiving a configuration update message chain sent by the configuration update master device; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and verifying the final networking parameters based on the configuration updating information sent by each access device.
Optionally, the method further includes:
and after the final networking parameter is verified, updating and configuring based on the final networking parameter.
Optionally, before the configuring and updating information is constructed based on the new networking parameter, the method further includes:
and determining the configuration updating main equipment based on the screening strategy of the configuration updating main equipment.
Wherein the determining the configuration update master device based on the screening policy of the configuration update master device includes:
and selecting the equipment currently connected with the external network outlet as the configuration updating main equipment.
Optionally, before the configuring and updating information is constructed based on the new networking parameter, the method further includes:
and determining the configuration updating main equipment based on the equipment list and the screening strategy of the configuration updating main equipment.
Wherein the screening strategy includes, but is not limited to, the following:
the on-network equipment with the largest equipment identification ID in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum equipment ID in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest media access control address MAC in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum MAC in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest internet protocol IP address in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum IP address in the equipment list is used as configuration updating main equipment;
starting up the latest on-line equipment in the equipment list as configuration updating main equipment;
and taking the earliest on-network device in the device list as a configuration updating main device.
Optionally, before the configuring and updating information is constructed based on the new networking parameter, the method further includes:
and calculating to obtain new networking parameters based on the same equipment list of all the access equipment and the currently effective networking parameters.
The networking parameters comprise networking ID and networking key, and the method for calculating the new networking parameters comprises one of the following algorithms:
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key, the equipment list abstract and the current date;
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the maximum value of the equipment MAC, the maximum value of the equipment IP address, the maximum value of the equipment starting time and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the minimum value of the equipment ID in the equipment list, the minimum value of the equipment MAC, the minimum value of the equipment IP address, the minimum value of the equipment starting time and the current date; and calculating a new networking key based on the current networking key and the new networking ID.
Wherein, the configuration updating information is constructed based on the new networking parameters and is sent to the configuration updating main equipment, and the method comprises the following steps:
constructing configuration update information; the configuration update information includes: the new networking parameters, the result of encrypting the new networking parameters by using the private key of the access equipment and the public key of the access equipment;
and encrypting the configuration updating information through a networking secret key in the current networking parameters, and sending the configuration updating information to the configuration updating main equipment.
Optionally, the method further includes:
encrypting and interacting respective device related information with newly-accessed access devices;
and updating the equipment list based on the equipment-related information of the newly-accessed access equipment.
The embodiment of the invention also provides a method for updating the configuration between the access devices, which is applied to the configuration updating main device and comprises the following steps:
receiving configuration updating information which is sent by each access device and constructed based on new networking parameters;
constructing a configuration updating message chain; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and sending the configuration updating message chain to each access device for each access device to verify the final networking parameters.
Obtaining a final networking parameter based on the configuration update information sent by each access device, wherein the step of obtaining the final networking parameter comprises the following steps:
and respectively decrypting by using the public key of each access device to obtain new networking parameters calculated by the corresponding access device, and deciding the final networking parameters based on a consensus mechanism when the new networking parameters are determined to be verified correctly.
The configuration update message chain comprises N blocks, wherein N is the number of access devices in the network; wherein the content of the first and second substances,
the first block is: encrypting the final networking parameters and the result of the configuration updating information calculated by the configuration updating master equipment by using the private key of the configuration updating master equipment;
the following blocks are: and encrypting the content of the previous block and the result of the configuration updating information sent by the access device corresponding to the current block by using the private key of the configuration updating master device.
Wherein the sending the configuration update message chain to each access device includes:
and encrypting and synchronizing the configuration updating message chain to each access device based on a networking key.
The embodiment of the invention also provides a device for updating the configuration between the access devices, which is applied to the access devices and comprises the following steps:
the configuration sending module is used for constructing configuration updating information based on the new networking parameters and sending the configuration updating information to the configuration updating main equipment;
a first receiving module, configured to receive a configuration update message chain sent by the configuration update master device; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and the verification module is used for verifying the final networking parameters by the configuration updating information sent by each access device.
The embodiment of the invention also provides a device for updating the configuration between the access devices, which is applied to the configuration updating main device and comprises the following steps:
the second receiving module is used for receiving the configuration updating information which is sent by each access device and constructed based on the new networking parameters;
the construction module is used for constructing a configuration updating message chain; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and the sending module is used for sending the configuration updating message chain to each access device and verifying the final networking parameters by each access device.
The embodiment of the invention also provides a device for updating the configuration between the access devices, which comprises: a processor and a memory for storing a computer program capable of running on the processor,
wherein the processor is configured to perform the steps of the above method when running the computer program.
Embodiments of the present invention also provide a computer-readable storage medium, on which a computer program is stored, which, when executed by a processor, implements the steps of the above-mentioned method.
According to the configuration updating method and device and the computer readable storage medium between the access devices, the access devices construct configuration updating information based on new networking parameters and send the configuration updating information to the configuration updating main device; receiving a configuration update message chain sent by the configuration update master device; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device; the final networking parameters are verified based on the configuration updating information sent by each access device, and each access device participates in the safe negotiation and verification process of the networking parameters through a configuration updating message chain and can supervise the whole configuration updating process, so that the effect of configuration safe updating is realized; moreover, the configuration security updating process between the access devices does not need manual operation, and the user is not aware of the configuration security updating process. Therefore, the method provided by the embodiment of the invention has the advantages of good user experience and high safety, and can effectively overcome the defects of the related technology.
Drawings
Fig. 1 is a first flowchart illustrating a method for updating configuration between access devices according to an embodiment of the present invention;
fig. 2 is a schematic flow chart of a configuration updating method between access devices according to an embodiment of the present invention;
fig. 3 is a first schematic structural diagram of an apparatus for updating configuration between access devices according to an embodiment of the present invention;
fig. 4 is a schematic structural diagram of a configuration updating apparatus between access devices according to an embodiment of the present invention;
fig. 5 is a schematic structural diagram of a wireless Mesh network according to a scenario embodiment of the present invention;
fig. 6 is a flowchart illustrating a method for constructing a list of wireless Mesh network devices according to an embodiment of the present disclosure;
fig. 7 is a schematic diagram of a method for performing configuration security update by an access device based on a device list according to an embodiment of the present disclosure.
Detailed Description
The invention is described below with reference to the figures and examples.
An embodiment of the present invention provides a method for updating configuration between access devices, as shown in fig. 1, where the method is applied to an access device, and includes:
step 101: constructing configuration updating information based on the new networking parameters and sending the configuration updating information to the configuration updating master equipment;
step 102: receiving a configuration update message chain sent by the configuration update master device; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
step 103: and verifying the final networking parameters based on the configuration updating information sent by each access device.
The embodiment of the invention realizes the effect of safe updating of configuration by configuring the updating message chain and enabling each access device to participate in the safe negotiation and verification process of networking parameters and supervise the whole configuration updating process.
In one embodiment of the present invention, the method further comprises:
and after the final networking parameter is verified, updating and configuring based on the final networking parameter.
In an embodiment of the present invention, before constructing the configuration update information based on the new networking parameter, the method further includes:
and determining the configuration updating main equipment based on the screening strategy of the configuration updating main equipment.
In this embodiment of the present invention, the determining a configuration update master device based on a screening policy of the configuration update master device includes:
and selecting the equipment currently connected with the external network outlet as the configuration updating main equipment.
In an embodiment of the present invention, before constructing the configuration update information based on the new networking parameter, the method further includes:
and determining the configuration updating main equipment based on the equipment list and the screening strategy of the configuration updating main equipment.
In the embodiment of the present invention, the screening policy includes, but is not limited to, the following:
the on-network equipment with the largest equipment identification ID in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum equipment ID in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest media access control address MAC in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum MAC in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest internet protocol IP address in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum IP address in the equipment list is used as configuration updating main equipment;
starting up the latest on-line equipment in the equipment list as configuration updating main equipment;
and taking the earliest on-network device in the device list as a configuration updating main device.
In an embodiment of the present invention, before constructing the configuration update information based on the new networking parameter, the method further includes:
and calculating to obtain new networking parameters based on the same equipment list of all the access equipment and the currently effective networking parameters.
In the embodiment of the present invention, the networking parameter includes a networking ID and a networking key, and the method for calculating the new networking parameter includes one of the following algorithms:
calculating a new networking ID based on the current networking ID (such as MeshID), the equipment list abstract and the current date; calculating a new networking key based on the current networking key (such as MeshKey), the equipment list abstract and the current date;
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the maximum value of the equipment MAC, the maximum value of the equipment IP address, the maximum value of the equipment starting time and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the minimum value of the equipment ID in the equipment list, the minimum value of the equipment MAC, the minimum value of the equipment IP address, the minimum value of the equipment starting time and the current date; and calculating a new networking key based on the current networking key and the new networking ID.
In this embodiment of the present invention, the constructing and sending configuration update information to the configuration update master device based on the new networking parameter includes:
constructing configuration update information; the configuration update information includes: the new networking parameters, the result of encrypting the new networking parameters by using the private key of the access equipment and the public key of the access equipment;
and encrypting the configuration updating information through a networking secret key in the current networking parameters, and sending the configuration updating information to the configuration updating main equipment.
In one embodiment of the present invention, the method further comprises:
encrypting and interacting respective device related information with newly-accessed access devices;
and updating the equipment list based on the equipment-related information of the newly-accessed access equipment.
An embodiment of the present invention further provides a method for updating configuration between access devices, as shown in fig. 2, where the method is applied to a configuration update master device, and includes:
step 201: receiving configuration updating information which is sent by each access device and constructed based on new networking parameters;
step 202: constructing a configuration updating message chain; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
step 203: and sending the configuration updating message chain to each access device for each access device to verify the final networking parameters.
In the embodiment of the present invention, obtaining a final networking parameter based on the configuration update information sent by each access device includes:
and respectively decrypting by using the public key of each access device to obtain new networking parameters calculated by the corresponding access device, and deciding the final networking parameters based on a consensus mechanism when the new networking parameters are determined to be verified correctly.
In the embodiment of the invention, the configuration updating message chain comprises N blocks, wherein N is the number of access devices in a network; wherein the content of the first and second substances,
the first block is: encrypting the final networking parameters and the result of the configuration updating information calculated by the configuration updating master equipment by using the private key of the configuration updating master equipment;
the following blocks are: and encrypting the content of the previous block and the result of the configuration updating information sent by the access device corresponding to the current block by using the private key of the configuration updating master device.
In this embodiment of the present invention, the sending the configuration update message chain to each access device includes:
and encrypting and synchronizing the configuration updating message chain to each access device based on a networking key.
In order to implement the foregoing method embodiment, an embodiment of the present invention further provides an apparatus for updating configuration between access devices, where as shown in fig. 3, the apparatus is applied to an access device, and includes:
a configuration sending module 301, configured to construct configuration update information based on the new networking parameters and send the configuration update information to the configuration update master device;
a first receiving module 302, configured to receive a configuration update message chain sent by the configuration update master device; the configuration update message chain comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
a verification module 303, configured to verify the final networking parameter with the configuration update information sent by each access device.
In an embodiment of the present invention, the verification module 303 is further configured to update and configure based on the final networking parameter after the final networking parameter is verified.
In an embodiment of the present invention, before the configuration sending module 301 constructs the configuration update information based on the new networking parameter, the configuration sending module is further configured to determine the configuration update master device based on the screening policy of the configuration update master device.
In this embodiment of the present invention, the determining, by the configuration sending module 301, the configuration update master device based on the screening policy of the configuration update master device includes:
and selecting the equipment currently connected with the external network outlet as the configuration updating main equipment.
In an embodiment of the present invention, before the configuration sending module 301 constructs the configuration update information based on the new networking parameters, the configuration sending module is further configured to determine the configuration update master device based on the device list and the screening policy of the configuration update master device.
In the embodiment of the present invention, the screening policy includes, but is not limited to, the following:
the on-network equipment with the largest equipment identification ID in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum equipment ID in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest media access control address MAC in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum MAC in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest internet protocol IP address in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum IP address in the equipment list is used as configuration updating main equipment;
starting up the latest on-line equipment in the equipment list as configuration updating main equipment;
and taking the earliest on-network device in the device list as a configuration updating main device.
In an embodiment of the present invention, before the configuration sending module 301 constructs the configuration update information based on the new networking parameters, the configuration sending module is further configured to calculate to obtain the new networking parameters based on the same device list of all the access devices and the currently effective networking parameters.
In this embodiment of the present invention, the networking parameter includes a networking ID and a networking key, and the method for calculating the new networking parameter by the configuration sending module 301 includes one of the following algorithms:
calculating a new networking ID based on the current networking ID (such as MeshID), the equipment list abstract and the current date; calculating a new networking key based on the current networking key (such as MeshKey), the equipment list abstract and the current date;
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the maximum value of the equipment MAC, the maximum value of the equipment IP address, the maximum value of the equipment starting time and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the minimum value of the equipment ID in the equipment list, the minimum value of the equipment MAC, the minimum value of the equipment IP address, the minimum value of the equipment starting time and the current date; and calculating a new networking key based on the current networking key and the new networking ID.
In this embodiment of the present invention, the configuration sending module 301 constructs configuration update information based on the new networking parameter and sends the configuration update information to the configuration update master device, including:
constructing configuration update information; the configuration update information includes: the new networking parameters, the result of encrypting the new networking parameters by using the private key of the access equipment and the public key of the access equipment;
and encrypting the configuration updating information through a networking secret key in the current networking parameters, and sending the configuration updating information to the configuration updating main equipment.
In an embodiment of the present invention, the first receiving module 302 is further configured to
Encrypting and interacting respective device related information with newly-accessed access devices;
and updating the equipment list based on the equipment-related information of the newly-accessed access equipment.
An embodiment of the present invention further provides an apparatus for updating configuration between access devices, as shown in fig. 4, where the apparatus is applied to a configuration update master device, and includes:
a second receiving module 401, configured to receive configuration update information constructed based on new networking parameters and sent by each access device;
a building module 402 configured to build a configuration update message chain; the configuration update message chain comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
a sending module 403, configured to send the configuration update message chain to each access device, where the configuration update message chain is used for each access device to verify the final networking parameter.
In this embodiment of the present invention, the constructing module 402 obtains the final networking parameters based on the configuration update information sent by each access device, including:
and respectively decrypting by using the public key of each access device to obtain new networking parameters calculated by the corresponding access device, and deciding the final networking parameters based on a consensus mechanism when the new networking parameters are determined to be verified correctly.
In the embodiment of the invention, the configuration updating message chain comprises N blocks, wherein N is the number of access devices in a network; wherein the content of the first and second substances,
the first block is: encrypting the final networking parameters and the result of the configuration updating information calculated by the configuration updating master equipment by using the private key of the configuration updating master equipment;
the following blocks are: and encrypting the content of the previous block and the result of the configuration updating information sent by the access device corresponding to the current block by using the private key of the configuration updating master device.
In this embodiment of the present invention, the sending module 403 sends the configuration update message chain to each access device, including:
and encrypting and synchronizing the configuration updating message chain to each access device based on a networking key.
The embodiment of the invention also provides a device for updating the configuration between the access devices, which comprises: a processor and a memory for storing a computer program capable of running on the processor,
wherein the processor is configured to execute, when running the computer program:
constructing configuration updating information based on the new networking parameters and sending the configuration updating information to the configuration updating master equipment;
receiving a configuration update message chain sent by the configuration update master device; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and verifying the final networking parameters based on the configuration updating information sent by each access device.
The processor is further configured to, when executing the computer program, perform:
and after the final networking parameters are verified, updating and configuring based on the final networking parameters.
Before the configuration update information is constructed based on the new networking parameters, the processor is further configured to execute, when running the computer program:
and determining the configuration updating main equipment based on the screening strategy of the configuration updating main equipment.
When the configuration update master device is determined based on the screening policy of the configuration update master device, the processor is further configured to execute, when the computer program is run, the following:
and selecting the equipment currently connected with the external network outlet as the configuration updating main equipment.
Before the configuration update information is constructed based on the new networking parameters, the processor is further configured to execute, when running the computer program:
and determining the configuration updating main equipment based on the equipment list and the screening strategy of the configuration updating main equipment.
Wherein the screening strategy includes, but is not limited to, the following:
the on-network equipment with the largest equipment identification ID in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum equipment ID in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest media access control address MAC in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum MAC in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest internet protocol IP address in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum IP address in the equipment list is used as configuration updating main equipment;
starting up the latest on-line equipment in the equipment list as configuration updating main equipment;
and taking the earliest on-network device in the device list as a configuration updating main device.
Before the configuration update information is constructed based on the new networking parameters, the processor is further configured to execute, when running the computer program:
and calculating to obtain new networking parameters based on the same equipment list of all the access equipment and the currently effective networking parameters.
The networking parameters include a networking ID and a networking key, and when the new networking parameters are calculated, the processor is further configured to execute one of the following algorithms when the computer program is run:
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key, the equipment list abstract and the current date;
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the maximum value of the equipment MAC, the maximum value of the equipment IP address, the maximum value of the equipment starting time and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the minimum value of the equipment ID in the equipment list, the minimum value of the equipment MAC, the minimum value of the equipment IP address, the minimum value of the equipment starting time and the current date; and calculating a new networking key based on the current networking key and the new networking ID.
When the configuration update information is constructed based on the new networking parameters and is sent to the configuration update master device, the processor is further configured to execute, when the computer program is run:
constructing configuration update information; the configuration update information includes: the new networking parameters, the result of encrypting the new networking parameters by using the private key of the access equipment and the public key of the access equipment;
and encrypting the configuration updating information through a networking secret key in the current networking parameters, and sending the configuration updating information to the configuration updating main equipment.
The processor is further configured to, when executing the computer program, perform:
encrypting and interacting respective device related information with newly-accessed access devices;
and updating the equipment list based on the equipment-related information of the newly-accessed access equipment.
The embodiment of the invention also provides a device for updating the configuration between the access devices, which comprises: a processor and a memory for storing a computer program capable of running on the processor,
wherein the processor is configured to execute, when running the computer program:
receiving configuration updating information which is sent by each access device and constructed based on new networking parameters;
constructing a configuration updating message chain; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and sending the configuration updating message chain to each access device for each access device to verify the final networking parameters.
When the final networking parameters are obtained based on the configuration update information sent by each access device, the processor is further configured to execute, when the computer program is run:
and respectively decrypting by using the public key of each access device to obtain new networking parameters calculated by the corresponding access device, and deciding the final networking parameters based on a consensus mechanism when the new networking parameters are determined to be verified correctly.
The configuration update message chain comprises N blocks, wherein N is the number of access devices in the network; wherein the content of the first and second substances,
the first block is: encrypting the final networking parameters and the result of the configuration updating information calculated by the configuration updating master equipment by using the private key of the configuration updating master equipment;
the following blocks are: and encrypting the content of the previous block and the result of the configuration updating information sent by the access device corresponding to the current block by using the private key of the configuration updating master device.
When the configuration update message is sent to each access device, the processor is further configured to, when running the computer program, perform:
and encrypting and synchronizing the configuration updating message chain to each access device based on a networking key.
It should be noted that: the apparatus provided in the foregoing embodiment is only illustrated by the above division of each program module when performing configuration update between access devices, and in practical applications, the above processing allocation may be completed by different program modules according to needs, that is, the internal structure of the device is divided into different program modules to complete all or part of the above-described processing. In addition, the apparatus provided in the above embodiments and the corresponding method embodiments belong to the same concept, and specific implementation processes thereof are described in the method embodiments and are not described herein again.
In an exemplary embodiment, the embodiment of the present invention also provides a computer-readable storage medium, which may be a Memory such as FRAM, ROM, PROM, EPROM, EEPROM, Flash Memory, magnetic surface Memory, optical disc, or CD-ROM; or may be a variety of devices including one or any combination of the above memories, such as a mobile phone, computer, tablet device, personal digital assistant, etc.
An embodiment of the present invention further provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, performs:
constructing configuration updating information based on the new networking parameters and sending the configuration updating information to the configuration updating main equipment;
receiving a configuration updating message chain sent by the configuration updating master device; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and verifying the final networking parameters based on the configuration updating information sent by each access device.
The computer program, when executed by the processor, further performs:
and after the final networking parameter is verified, updating and configuring based on the final networking parameter.
Before the configuring and updating information based on the new networking parameters is constructed, the computer program is executed by the processor to further execute:
and determining the configuration updating main equipment based on the screening strategy of the configuration updating main equipment.
When the configuration update master device is determined based on the screening policy of the configuration update master device, and the computer program is run by the processor, the computer program further executes:
and selecting the equipment currently connected with the external network outlet as the configuration updating main equipment.
Before the configuring and updating information based on the new networking parameters is constructed, the computer program is executed by the processor to further execute:
and determining the configuration updating main equipment based on the equipment list and the screening strategy of the configuration updating main equipment.
Wherein the screening strategy includes, but is not limited to, the following:
the on-network equipment with the largest equipment identification ID in the equipment list is used as configuration updating main equipment;
the on-network equipment with the minimum equipment ID in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest media access control address MAC in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum MAC in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest internet protocol IP address in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum IP address in the equipment list is used as configuration updating main equipment;
starting up the latest on-line equipment in the equipment list as configuration updating main equipment;
and taking the earliest on-network device in the device list as a configuration updating main device.
Before the configuration update information is constructed based on the new networking parameters, the computer program is executed by the processor to execute:
and calculating to obtain new networking parameters based on the same equipment list of all the access equipment and the currently effective networking parameters.
The networking parameters comprise a networking ID and a networking key, and when the new networking parameters are calculated, the computer program is executed by the processor, and one of the following algorithms is further executed:
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key, the equipment list abstract and the current date;
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the maximum value of the equipment MAC, the maximum value of the equipment IP address, the maximum value of the equipment starting time and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the minimum value of the equipment ID in the equipment list, the minimum value of the equipment MAC, the minimum value of the equipment IP address, the minimum value of the equipment starting time and the current date; and calculating a new networking key based on the current networking key and the new networking ID.
When the configuration update information is constructed based on the new networking parameters and is sent to the configuration update master device, the computer program further executes, when executed by the processor:
constructing configuration update information; the configuration update information includes: the new networking parameters, the result of encrypting the new networking parameters by using the private key of the access equipment and the public key of the access equipment;
and encrypting the configuration updating information through a networking secret key in the current networking parameters, and sending the configuration updating information to the configuration updating main equipment.
The computer program, when executed by the processor, further performs:
encrypting and interacting respective device related information with newly-accessed access devices;
and updating the equipment list based on the equipment-related information of the newly-accessed access equipment.
An embodiment of the present invention further provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, performs:
receiving configuration updating information which is sent by each access device and constructed based on new networking parameters;
constructing a configuration updating message chain; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and sending the configuration updating message chain to each access device for each access device to verify the final networking parameters.
When the final networking parameters are obtained based on the configuration updating information sent by each access device, the computer program further executes, when being executed by the processor:
and respectively decrypting by using the public key of each access device to obtain new networking parameters calculated by the corresponding access device, and deciding the final networking parameters based on a consensus mechanism when the new networking parameters are determined to be verified correctly.
The configuration update message chain comprises N blocks, wherein N is the number of access devices in the network; wherein the content of the first and second substances,
the first block is: encrypting the final networking parameters and the result of the configuration updating information calculated by the configuration updating master equipment by using the private key of the configuration updating master equipment;
the following blocks are: and encrypting the content of the previous block and the result of the configuration updating information sent by the access device corresponding to the current block by using the private key of the configuration updating master device.
When the configuration update message is sent to each access device, the computer program, when executed by the processor, further performs:
and encrypting and synchronizing the configuration updating message chain to each access device based on a networking key.
The invention is described below in conjunction with the scenario embodiments.
The embodiment provides a method for updating configuration between access devices. Each access device is assigned a pair of public and private keys, and the public key pair can be preset in factory or distributed by a management platform. The information of the safety exchange equipment is encrypted based on the MeshKey (networking key) among the access equipment, so that all the access equipment in the wireless Mesh network can construct the same equipment list. And each access device calculates new networking parameters based on the same configuration parameter generation algorithm, the same device list and the currently effective networking parameters. Based on the same configuration updating main equipment screening strategy, all access equipment in the wireless Mesh network decides configuration updating main equipment, and a configuration updating message chain is constructed by the configuration updating main equipment. Each access device constructs a configuration updating message based on the new networking parameters and sends the configuration updating message to a configuration updating master device, the configuration updating master device decides the final networking parameters based on a consensus mechanism, a configuration updating message chain is constructed according to a certain rule and sent to each access device, and each access device verifies the configuration updating message chain and updates the configuration networking parameters according to the chain. The networking schematic diagram of the wireless Mesh network is shown in fig. 5.
The following method for constructing a wireless Mesh network device list for an access device, as shown in fig. 6, includes:
step 601: after being started, the access devices configured with the same networking parameters (networking ID: Mesh ID, networking key: Mesh key) automatically join the same wireless Mesh network (hereinafter referred to as newly-joined access devices for short), that is, the relevant information (device ID, MAC, IP, starting time and the like) of the own devices is added into a device list.
Step 602: and the newly added access equipment encrypts and sends the relevant information of the equipment to other access equipment in the wireless Mesh network by using the Mesh key.
Step 603: and the other access equipment decrypts the received equipment-related information by using the MeshKey and updates the information into the equipment list.
Step 604: and other access equipment encrypts and sends the relevant information (equipment ID, MAC, IP, starting time and the like) of the access equipment to the access equipment newly added into the network by using the MeshKey.
Step 605: and the newly added access equipment decrypts the received equipment related information of other access equipment by using the MeshKey and updates the information into the equipment list.
Step 606: if the access device is shut down or factory configuration is restored, the device list maintained by the device is automatically emptied, and the device list is reconstructed according to the process when the access device is added to the network next time.
By the method, all the access devices in the wireless Mesh network construct the same device list.
The following method for updating configuration of an access device based on a device list, as shown in fig. 7, includes:
step 701: based on the same configuration update master device screening strategy, all access devices in the wireless Mesh network decide a configuration update master device, and a configuration update message chain is constructed by the configuration update master device screening strategy, including but not limited to the following configuration update master device screening strategies:
strategy 1:
MasterD _ Max (Device _ ID): and the on-network equipment with the largest equipment ID in the equipment list is used as the configuration updating main equipment.
Strategy 2:
MasterD _ Min (Device _ ID): and the network-on device with the minimum device ID in the device list is used as a configuration updating main device.
Strategy 3:
MasterD _ Max (Device _ MAC): and the on-network equipment with the largest MAC in the equipment list is used as the configuration updating main equipment.
Strategy 4:
MasterD _ Min (Device _ MAC): and the network equipment with the minimum MAC in the equipment list is used as a configuration updating main equipment.
Strategy 5:
MasterD _ Max (Device _ IP): and the on-network equipment with the largest IP in the equipment list is used as the configuration updating main equipment.
Strategy 6:
MasterD _ Min (Device _ IP): and the network equipment with the minimum IP in the equipment list is used as the configuration updating main equipment.
Strategy 7:
MasterD _ Max (Device _ Time): and taking the latest network device started in the device list as a configuration updating main device.
Strategy 8:
MasterD _ Min (Device _ Time): and taking the earliest on-network device in the device list as a configuration updating main device.
Strategy 9:
network _ Exit _ Device: and the equipment currently connected with the external network outlet is used as a configuration updating main equipment.
Step 702: based on the same configuration parameter generation algorithm, all access devices in the wireless Mesh network calculate New networking parameters (New networking ID: MeshID _ New, New networking key: MeshKey _ New) through a shared device list and the current networking parameters, including but not limited to the following configuration parameter generation algorithms:
generating algorithm 1:
calculating MeshID _ New based on the current MeshID, the device list abstract and the current date; MeshKey _ New is calculated based on current MeshKey, equipment list abstract and current date
MeshID_New=SHA1(MeshID,SHA1(Device_List),Date_Current);
MeshKey_New=KDF(MeshKey,SHA1(Device_List),Date_Current)
The generation algorithm 2:
calculating MeshID _ New based on the current MeshID, the equipment list abstract and the current date; MeshKey _ New is calculated based on current MeshKey and newly generated MeshID _ New
MeshID_New=SHA1(MeshID,SHA1(Device_List),Date_Current);
MeshKey_New=KDF(MeshKey,MeshID_New)
The generation algorithm 3:
calculating MeshID _ New based on the current MeshID, the maximum value of the equipment IDs in the equipment list, the maximum value of the equipment MACs in the equipment list, the maximum value of the equipment IPs in the equipment list, the maximum value of the equipment starting time in the equipment list and the current date; MeshKey _ New is calculated based on current MeshKey and newly generated MeshID _ New
MeshID_New=SHA1(MeshID,Max(Device_ID),Max(Device_MAC),Max(Device_IP),Max(Device_Time),Date_Current);
MeshKey_New=KDF(MeshKey,MeshID_New)
The generation algorithm 4:
calculating MeshID _ New based on the current MeshID, the minimum value of the equipment IDs in the equipment list, the minimum value of the MAC of the equipment in the equipment list, the minimum value of the IP of the equipment in the equipment list, the minimum value of the starting time of the equipment in the equipment list and the current date; MeshKey _ New is calculated based on current MeshKey and newly generated MeshID _ New
MeshID_New=SHA1(MeshID,Min(Device_ID),Min(Device_MAC),Min(Device_IP),Min(Device_Time),Date_Current);
MeshKey_New=KDF(MeshKey,MeshID_New)
Wherein:
SHA1 is a hash algorithm;
KDF is a key generation algorithm;
device _ List is the Device List;
date _ Current is the Current Date, and is an option;
max (Device _ ID) is the maximum value of the Device ID in the Device list;
min (Device _ ID) is the minimum value of the Device IDs in the Device list;
max (Device _ MAC) is the maximum value of the Device MAC in the Device list;
min (Device _ MAC) Device MAC minimum in Device list;
max (Device _ IP) is the maximum value of the Device IP in the Device list;
min (Device _ IP) Device IP minimum in Device list;
max (Device _ Time) is the maximum value of the Device boot Time in the Device list;
min (Device _ Time) Device on Time minimum in the Device list.
Step 703: each access device makes up the new networking parameters calculated by itself, the result obtained after encrypting the new networking parameters by the private key of itself and the public key of itself into configuration updating information. Taking access device X as an example, the configuration update information is constructed as follows: message _ U _ X { [ Message _ New, Message _ New ], epikey _ X ([ Message _ New, Message _ New ]), PubKey _ X }, where PubKey _ X, PriKey _ X is a public and private key of access device X, respectively.
Step 704: and each access device encrypts the configuration updating information constructed by the access device through the MeshKey and sends the configuration updating information to the configuration updating main device.
Step 705: the configuration updating main equipment sequentially verifies the consistency of the configuration updating information sent by each access equipment, decrypts the new networking parameters calculated by the access equipment by using the public key of each access equipment, verifies the correctness of the new networking parameters, and decides the final networking parameters based on a consensus mechanism if the new networking parameters are correct. The consensus mechanism is described as follows: assuming that there are N access devices in the network, according to a predetermined threshold H (a positive integer whose value is not greater than N), when X items of configuration update information are consistent and X > is equal to H, the networking parameters in the X items of configuration update information that are the same are the final networking parameters.
Step 706: the configuration update master device constructs a configuration update message chain according to a certain rule (for example, the time sequence of the received configuration update messages). The first block of the configuration updating message chain is the result of encrypting the final networking parameters and the configuration updating information calculated by the configuration updating master device by using the private key of the configuration updating master device, and the later block is the result of encrypting the content of the previous block and the configuration updating information sent by the access device corresponding to the current block by using the private key of the configuration updating master device.
Assuming that the configuration update master is the access device D1, the first Block _1 ═ EPriKey_D1([ New group network ID, New group network Key)],Message_U_D1),Block_2=EPriKey_D1(Block _1, Message _ U _ D2), … …, nth Block _ N ═ EPriKey_D1(Block_N-1,Message_U_DN),So that the configuration update information of the N access devices is constructed into a chain of configuration update messages.
Step 707: and the configuration updating master device safely synchronizes the constructed configuration updating message chain to each access device based on the MeshKey.
Step 708: each access device verifies the correctness of the configuration update message chain based on the public key of the configuration update main device: and obtaining configuration updating information sent to the configuration updating main equipment by each access equipment according to the public key of the configuration updating main equipment, and verifying the final networking parameters according to the information.
Step 709: and after the verification of each access device is passed, carrying out configuration updating according to the final networking parameters, and sending a networking configuration updating result (success/failure) to the configuration updating master device.
Step 710: after receiving the message of successful configuration update of all the access devices, the configuration update master device carries out configuration update according to the updated networking parameters; otherwise, restarting the configuration security updating process.
After the wireless Mesh network completes networking, the network architecture is relatively fixed and cannot be changed under general conditions. After the wireless Mesh network completes the updating of the networking parameter configuration, if a new access device is required to be added, the networking configuration of the new access device can be realized by accessing the new access device to the internet and then pushing the updated networking parameter through the cloud.
The configuration safety updating process between the access devices in the embodiment of the invention does not need manual operation, has no perception to users and has good user experience. Meanwhile, through the configuration updating message chain, each access device participates in the safety negotiation and verification process of networking parameters, and can supervise the whole configuration updating process, thereby realizing the effect of configuration safety updating. Therefore, the method provided by the embodiment of the invention has the advantages of good user experience and high safety, and can effectively overcome the defects of the related technology.
The above description is only a preferred embodiment of the present invention, and is not intended to limit the scope of the present invention.

Claims (18)

1. A method for updating configuration between access devices is applied to the access devices, and comprises the following steps:
constructing configuration updating information based on the new networking parameters and sending the configuration updating information to the configuration updating main equipment;
receiving a configuration update message chain sent by the configuration update master device; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and verifying the final networking parameters based on the configuration updating information sent by each access device.
2. The method of claim 1, further comprising:
and after the final networking parameters are verified, updating and configuring based on the final networking parameters.
3. The method of claim 1, wherein before constructing the configuration update information based on the new networking parameters, the method further comprises:
and determining the configuration updating main equipment based on the screening strategy of the configuration updating main equipment.
4. The method of claim 3, wherein determining the configuration update master device based on the screening policy of the configuration update master device comprises:
and selecting the equipment currently connected with the external network outlet as the configuration updating main equipment.
5. The method of claim 3, wherein before constructing the configuration update information based on the new networking parameters, the method further comprises:
and determining the configuration updating main equipment based on the equipment list and the screening strategy of the configuration updating main equipment.
6. The method of claim 5, wherein the screening policies include, but are not limited to, the following:
the on-network equipment with the largest equipment identification ID in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum equipment ID in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest media access control address MAC in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum MAC in the equipment list is used as configuration updating main equipment;
the on-network equipment with the largest internet protocol IP address in the equipment list is used as configuration updating main equipment;
the network equipment with the minimum IP address in the equipment list is used as configuration updating main equipment;
starting up the latest on-line equipment in the equipment list as configuration updating main equipment;
and taking the earliest on-network device in the device list as a configuration updating main device.
7. The method of claim 1, wherein before constructing the configuration update information based on the new networking parameters, the method further comprises:
and calculating to obtain new networking parameters based on the same equipment list of all the access equipment and the currently effective networking parameters.
8. The method of claim 7, wherein the networking parameters include a networking ID and a networking key, and wherein the method of calculating the new networking parameters comprises one of the following algorithms:
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key, the equipment list abstract and the current date;
calculating a new networking ID based on the current networking ID, the equipment list abstract and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the maximum value of the equipment ID in the equipment list, the maximum value of the equipment MAC, the maximum value of the equipment IP address, the maximum value of the equipment starting time and the current date; calculating a new networking key based on the current networking key and the new networking ID;
calculating a new networking ID based on the current networking ID, the minimum value of the equipment ID in the equipment list, the minimum value of the equipment MAC, the minimum value of the equipment IP address, the minimum value of the equipment starting time and the current date; and calculating a new networking key based on the current networking key and the new networking ID.
9. The method of claim 1, wherein constructing and sending configuration update information to a configuration update master device based on the new networking parameters comprises:
constructing configuration update information; the configuration update information includes: the new networking parameters, the result of encrypting the new networking parameters by using the private key of the access equipment and the public key of the access equipment;
and encrypting the configuration updating information through a networking secret key in the current networking parameters, and sending the configuration updating information to the configuration updating main equipment.
10. The method according to any one of claims 1-9, further comprising:
encrypting and interacting respective device related information with newly-accessed access devices;
and updating the equipment list based on the equipment-related information of the newly-accessed access equipment.
11. A method for updating configuration between access devices is applied to a configuration updating main device, and comprises the following steps:
receiving configuration updating information which is sent by each access device and constructed based on new networking parameters;
constructing a configuration updating message chain; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and sending the configuration updating message chain to each access device for each access device to verify the final networking parameters.
12. The method of claim 11, wherein obtaining final networking parameters based on the configuration update information sent by each access device comprises:
and respectively decrypting by using the public key of each access device to obtain new networking parameters calculated by the corresponding access device, and deciding the final networking parameters based on a consensus mechanism when the new networking parameters are determined to be verified correctly.
13. The method of claim 11, wherein the configuration update message chain comprises N blocks, where N is the number of access devices in the network; wherein the content of the first and second substances,
the first block is: encrypting the final networking parameters and the result of the configuration updating information calculated by the configuration updating master equipment by using the private key of the configuration updating master equipment;
the following blocks are: and encrypting the content of the previous block and the result of the configuration updating information sent by the access device corresponding to the current block by using the private key of the configuration updating master device.
14. The method of claim 11, wherein sending the chain of configuration update messages to each access device comprises:
and encrypting and synchronizing the configuration updating message chain to each access device based on a networking key.
15. An apparatus for updating configuration between access devices, the apparatus being applied to an access device, and comprising:
the configuration sending module is used for constructing configuration updating information based on the new networking parameters and sending the configuration updating information to the configuration updating main equipment;
a first receiving module, configured to receive a configuration update message chain sent by the configuration update master device; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and the verification module is used for verifying the final networking parameters by the configuration updating information sent by each access device.
16. An apparatus for updating configuration between access devices, the apparatus being applied to a configuration update master device, comprising:
the second receiving module is used for receiving the configuration updating information which is sent by each access device and constructed based on the new networking parameters;
the construction module is used for constructing a configuration updating message chain; the chain of configuration update messages comprises: the configuration updating information sent by each access device and the final networking parameters obtained based on the configuration updating information sent by each access device;
and the sending module is used for sending the configuration updating message chain to each access device and verifying the final networking parameters by each access device.
17. An apparatus for updating configuration between access devices, the apparatus comprising: a processor and a memory for storing a computer program capable of running on the processor,
wherein the processor is adapted to perform the steps of the method of any one of claims 1-10 or to perform the steps of the method of any one of claims 11-14 when running the computer program.
18. A computer-readable storage medium, on which a computer program is stored which, when being executed by a processor, carries out the steps of the method of any one of claims 1 to 10 or carries out the steps of the method of any one of claims 11 to 14.
CN202011188988.0A 2020-10-30 2020-10-30 Method, device and computer readable storage medium for updating configuration between access devices Pending CN114449540A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011188988.0A CN114449540A (en) 2020-10-30 2020-10-30 Method, device and computer readable storage medium for updating configuration between access devices

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011188988.0A CN114449540A (en) 2020-10-30 2020-10-30 Method, device and computer readable storage medium for updating configuration between access devices

Publications (1)

Publication Number Publication Date
CN114449540A true CN114449540A (en) 2022-05-06

Family

ID=81356939

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011188988.0A Pending CN114449540A (en) 2020-10-30 2020-10-30 Method, device and computer readable storage medium for updating configuration between access devices

Country Status (1)

Country Link
CN (1) CN114449540A (en)

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140301245A1 (en) * 2013-04-08 2014-10-09 Thales Distributed method for selecting a configuration in mobile networks
US9419856B1 (en) * 2014-12-01 2016-08-16 Amazon Technologies, Inc. Network device configuration deployment pipeline
US20160316420A1 (en) * 2015-04-27 2016-10-27 Apple Inc. Reconfiguration of wireless devices for wireless network access
CN106850222A (en) * 2017-01-04 2017-06-13 普联技术有限公司 The configuration and synchronization method of wireless networking devices, wireless networking devices and system
US20170324716A1 (en) * 2016-05-04 2017-11-09 Freescale Semiconductor, Inc. Autonomous Key Update Mechanism with Blacklisting of Compromised Nodes for Mesh Networks
CN107645725A (en) * 2017-09-21 2018-01-30 广东美的制冷设备有限公司 Network collocating method and system, routing device and log equipment
CN108683539A (en) * 2018-05-21 2018-10-19 腾讯科技(深圳)有限公司 Management method, device, medium and the electronic equipment of block chain network
CN109299333A (en) * 2018-08-16 2019-02-01 北京京东尚科信息技术有限公司 Block chain network account book member management method, device, equipment and storage medium
CN111371588A (en) * 2020-02-11 2020-07-03 广州广大通电子科技有限公司 SDN edge computing network system based on block chain encryption, encryption method and medium

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140301245A1 (en) * 2013-04-08 2014-10-09 Thales Distributed method for selecting a configuration in mobile networks
US9419856B1 (en) * 2014-12-01 2016-08-16 Amazon Technologies, Inc. Network device configuration deployment pipeline
US20160316420A1 (en) * 2015-04-27 2016-10-27 Apple Inc. Reconfiguration of wireless devices for wireless network access
US20170324716A1 (en) * 2016-05-04 2017-11-09 Freescale Semiconductor, Inc. Autonomous Key Update Mechanism with Blacklisting of Compromised Nodes for Mesh Networks
CN106850222A (en) * 2017-01-04 2017-06-13 普联技术有限公司 The configuration and synchronization method of wireless networking devices, wireless networking devices and system
CN107645725A (en) * 2017-09-21 2018-01-30 广东美的制冷设备有限公司 Network collocating method and system, routing device and log equipment
CN108683539A (en) * 2018-05-21 2018-10-19 腾讯科技(深圳)有限公司 Management method, device, medium and the electronic equipment of block chain network
CN109299333A (en) * 2018-08-16 2019-02-01 北京京东尚科信息技术有限公司 Block chain network account book member management method, device, equipment and storage medium
CN111371588A (en) * 2020-02-11 2020-07-03 广州广大通电子科技有限公司 SDN edge computing network system based on block chain encryption, encryption method and medium

Similar Documents

Publication Publication Date Title
CN108400872B (en) Block chain information transmission method and system based on satellite-ground cooperation
US10827351B2 (en) Network authentication method, relay node, and related system
US9189632B2 (en) Method for protecting security of data, network entity and communication terminal
CN101399661A (en) Legal neighbor authentication method and device in group key management
US9621519B2 (en) System and method for key exchange based on authentication information
WO2018177905A1 (en) Hybrid key exchange
WO2009090616A2 (en) Wireless communication system and method for automatic node and key revocation
US10348489B2 (en) Internet of things (IOT) method for updating a master key
CN102263787B (en) Dynamic distributed certification authority (CA) configuration method
CN111786787B (en) Quantum key distribution post-processing method and system based on verifiable secret sharing
US9065639B2 (en) Device for generating encryption key, method thereof and computer readable medium
CN111654481B (en) Identity authentication method, identity authentication device and storage medium
US10320917B2 (en) Key negotiation processing method and apparatus
CN110581829A (en) Communication method and device
Castiglione et al. An efficient and transparent one-time authentication protocol with non-interactive key scheduling and update
CN111614462B (en) Key calculation method and system based on blockchain
KR20210126319A (en) Apparatus and method for managing key
CN113329371A (en) 5G Internet of vehicles V2V anonymous authentication and key agreement method based on PUF
CN110784318B (en) Group key updating method, device, electronic equipment, storage medium and communication system
CN114449540A (en) Method, device and computer readable storage medium for updating configuration between access devices
CN116204914A (en) Trusted privacy computing method, device, equipment and storage medium
CN115412288A (en) Key management method and device
CN112235799B (en) Network access authentication method and system for terminal equipment
CN114726555A (en) Authentication and key agreement method, device and storage medium
CN113660285A (en) Multimedia conference on-line terminal control method, device, equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination