CN114666151A - Equipment binding method, device, terminal, Internet of things equipment and storage medium - Google Patents

Equipment binding method, device, terminal, Internet of things equipment and storage medium Download PDF

Info

Publication number
CN114666151A
CN114666151A CN202210366515.8A CN202210366515A CN114666151A CN 114666151 A CN114666151 A CN 114666151A CN 202210366515 A CN202210366515 A CN 202210366515A CN 114666151 A CN114666151 A CN 114666151A
Authority
CN
China
Prior art keywords
internet
equipment
things
information
certificate
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202210366515.8A
Other languages
Chinese (zh)
Other versions
CN114666151B (en
Inventor
吴飞飞
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Oribo Technology Co Ltd
Original Assignee
Shenzhen Oribo Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Oribo Technology Co Ltd filed Critical Shenzhen Oribo Technology Co Ltd
Priority to CN202210366515.8A priority Critical patent/CN114666151B/en
Publication of CN114666151A publication Critical patent/CN114666151A/en
Application granted granted Critical
Publication of CN114666151B publication Critical patent/CN114666151B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16YINFORMATION AND COMMUNICATION TECHNOLOGY SPECIALLY ADAPTED FOR THE INTERNET OF THINGS [IoT]
    • G16Y30/00IoT infrastructure
    • G16Y30/10Security thereof
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16YINFORMATION AND COMMUNICATION TECHNOLOGY SPECIALLY ADAPTED FOR THE INTERNET OF THINGS [IoT]
    • G16Y40/00IoT characterised by the purpose of the information processing
    • G16Y40/50Safety; Security of things, users, data or systems
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The application relates to an offline binding method, an offline binding device, a terminal, Internet of things equipment, a storage medium and a computer program product. The method comprises the steps of receiving a device certificate and first device information of the Internet of things device sent by the Internet of things device, carrying out validity verification on the Internet of things device according to the device certificate and the first device information to obtain a validity verification result, binding the Internet of things device to a target device group if the validity verification result is that validity verification passes, and sending a family certificate corresponding to the target device group to the Internet of things device. The terminal executes the equipment binding process after receiving the equipment certificate and the first equipment information of the Internet of things equipment sent by the Internet of things equipment, so that the Internet of things equipment is bound to the target equipment group, the family certificate is sent to the Internet of things equipment, and the binding of the Internet of things equipment is completed.

Description

Equipment binding method, device, terminal, Internet of things equipment and storage medium
Technical Field
The application relates to the technical field of intelligent home, in particular to an offline binding method, device, terminal, internet of things equipment, storage medium and computer program product of the equipment.
Background
With the development of the internet, people propose concepts and technologies of the internet of things, and try to connect various internet of things devices in a network mode so as to realize monitoring, control and interaction of various internet of things devices.
At present, if the internet of things equipment needs to be added to a household equipment group, the internet of things equipment needs to be successfully connected with a server, a terminal can be connected to a network, the terminal sends an equipment adding request to the server through the network so as to request the server to bind the internet of things equipment to the household equipment group, and after the server binds the internet of things equipment to the equipment group, the server informs the internet of things equipment that the internet of things equipment is bound to the equipment group, so that the binding of the internet of things equipment is completed.
However, if the internet of things device cannot be connected to the server, the internet of things device cannot be bound to the device group of the home.
Disclosure of Invention
Based on this, it is necessary to provide an offline binding method, apparatus, terminal, internet of things device, storage medium, and computer program product, which can still bind the internet of things device to a device group in a home when the internet of things device cannot be connected to a server.
In a first aspect, the present application provides a device binding method. The method is applied to the terminal and comprises the following steps:
receiving a device certificate and first device information of the Internet of things device, which are sent by the Internet of things device;
carrying out validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information to obtain a validity verification result;
if the validity verification result is that the validity verification is passed, the Internet of things equipment is bound to a target equipment group, and a family certificate corresponding to the target equipment group is sent to the Internet of things equipment.
In one embodiment, the performing validity verification on the internet of things device according to the device certificate and the first device information to obtain a validity verification result includes:
decrypting the equipment certificate to obtain second equipment information;
and if the second equipment information is consistent with the first equipment information, determining that the validity verification result is validity verification pass.
In one embodiment, the method further comprises:
sending a binding request to a server, wherein the binding request carries the device identifier of the internet of things device, the identifier of the target device group, the device certificate and the first device information, and is used for indicating the server to carry out validity verification on the internet of things device according to the device certificate and the first device information, and binding the internet of things device to the target device group after the validity verification is passed.
In one embodiment, the receiving the device certificate and the first device information of the internet of things device sent by the internet of things device includes:
sending a request message to the Internet of things equipment in a near field communication mode, wherein the request message is used for acquiring an equipment certificate and first equipment information of the Internet of things equipment;
and receiving the equipment certificate and the first equipment information sent by the Internet of things equipment.
In one embodiment, the method further comprises:
receiving notification information sent by the server, wherein the notification information is used for notifying the server that the internet of things device is bound to the target device group.
In one embodiment, the method further comprises:
receiving deletion indication information sent by the server, wherein the deletion indication information is information sent to the terminal after the server fails to verify the validity of the Internet of things equipment;
and in response to the deletion indication information, removing the Internet of things equipment from the target equipment group.
In a second aspect, the present application further provides an apparatus binding method, which is applied to an internet of things apparatus, and the method includes:
sending a device certificate and first device information of the Internet of things device to a terminal, so that the terminal performs validity verification on the Internet of things device according to the device certificate and the first device information, and binding the Internet of things device to a target device group under the condition that the validity verification is passed;
and receiving a home certificate corresponding to the target equipment group sent by the terminal, wherein the home certificate is a certificate sent by the terminal under the condition that the validity verification is passed.
In one embodiment, the sending, to the terminal, the device certificate and the first device information of the internet of things device includes:
receiving a request message sent by the terminal in a near field communication mode, wherein the request message is used for acquiring a device certificate and first device information of the equipment of the Internet of things; responding to the request message, and sending a device certificate and first device information of the Internet of things device to the terminal; alternatively, the first and second electrodes may be,
and when the fact that the Internet of things equipment is not in communication connection with the server is determined, sending the equipment certificate and the first equipment information of the Internet of things equipment to the terminal.
In one embodiment, the method further comprises:
receiving family information corresponding to the target equipment group sent by the terminal;
when the internet of things equipment and the server recover communication connection, sending a verification message to the server, wherein the verification message comprises the equipment certificate, the first equipment information, the family certificate and the family information and is used for indicating the server to carry out validity verification on the internet of things equipment according to the equipment certificate and the first equipment information and carrying out validity verification on the family certificate according to the family certificate and the family information under the condition that the validity verification is passed.
In a third aspect, the present application further provides an apparatus for binding devices. Set up in the terminal, the device includes:
the first receiving module is used for receiving the equipment certificate and the first equipment information of the Internet of things equipment, which are sent by the Internet of things equipment;
the verification module is used for verifying the legality of the Internet of things equipment according to the equipment certificate and the first equipment information to obtain a legality verification result;
and the binding module is used for binding the Internet of things equipment to a target equipment group and sending the family certificate corresponding to the target equipment group to the Internet of things equipment if the validity verification result is that the validity verification passes.
In a fourth aspect, the present application further provides an apparatus for binding devices. Device binds, its characterized in that sets up in thing networking device, the device includes:
the sending module is used for sending the equipment certificate and the first equipment information of the Internet of things equipment to a terminal, so that the terminal conducts validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information, and the Internet of things equipment is bound to a target equipment group under the condition that validity verification is passed;
and the second receiving module is configured to receive a home certificate corresponding to the target device group, where the home certificate is a certificate sent by the terminal when the validity verification is passed.
In a fifth aspect, the present application further provides a terminal, comprising a memory and a processor, wherein the memory stores a computer program, and the processor implements the steps of the method when executing the computer program.
In a sixth aspect, the present application further provides an internet of things device, including a memory and a processor, where the memory stores a computer program, and the processor implements the steps of the method when executing the computer program.
In a seventh aspect, the present application further provides a computer device. The computer device comprises a memory storing a computer program and a processor implementing the steps of the method described above when executing the computer program.
In an eighth aspect, the present application further provides a computer-readable storage medium. The computer-readable storage medium, on which a computer program is stored which, when being executed by a processor, carries out the steps of the method described above.
In a ninth aspect, the present application further provides a computer program product. The computer program product comprises a computer program which, when being executed by a processor, carries out the steps of the method as described above.
According to the offline binding method, the device, the terminal, the Internet of things equipment, the storage medium and the computer program product, the legality verification result is obtained by receiving the equipment certificate and the first equipment information of the Internet of things equipment sent by the Internet of things equipment and performing legality verification on the Internet of things equipment according to the equipment certificate and the first equipment information, if the legality verification result is that the legality verification passes, the Internet of things equipment is bound to the target equipment group, and the family certificate corresponding to the target equipment group is sent to the Internet of things equipment. The device binding method provided by the embodiment does not depend on whether the internet of things device is in communication connection with the server or not, and does not depend on whether the terminal can normally access the network, but the terminal executes the device binding process after receiving the device certificate of the internet of things device and the first device information sent by the internet of things device, so that the internet of things device is bound to the target device group, the home certificate is sent to the internet of things device, and the binding of the internet of things device is completed.
Drawings
Fig. 1 is an application environment diagram of a device binding method according to an embodiment of the present application;
fig. 2 is a flowchart illustrating a device binding method according to an embodiment of the present application;
fig. 3 is a schematic flowchart of a validity verification method provided in an embodiment of the present application;
fig. 4 is a schematic flowchart of a process of removing an internet of things device from a target device group according to an embodiment of the present application;
fig. 5 is a schematic flowchart of a method for receiving a device certificate and first device information according to an embodiment of the present application;
fig. 6 is a flowchart illustrating another device binding method according to an embodiment of the present application;
fig. 7 is a flowchart illustrating a method for sending verification information according to an embodiment of the present application;
fig. 8 is a signaling flow diagram of a device binding method according to an embodiment of the present application;
fig. 9 is a signaling flow diagram of another device binding method provided in an embodiment of the present application;
fig. 10 is a schematic structural diagram of a device binding apparatus according to an embodiment of the present application;
fig. 11 is a schematic structural diagram of another device binding apparatus provided in an embodiment of the present application;
FIG. 12 is a diagram illustrating an internal structure of a computer device according to an embodiment.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the present application is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.
In the conventional technology, if the internet of things equipment needs to be added to a household equipment group, the internet of things equipment needs to be successfully connected with a server, the terminal can be connected to a network, the terminal sends an equipment adding request to the server through the network so as to request the server to bind the internet of things equipment to the household equipment group, and after the server binds the internet of things equipment to the equipment group, the server informs the internet of things equipment that the internet of things equipment is bound to the equipment group, so that the binding of the internet of things equipment is completed. However, if the internet of things device cannot be connected to the server, for example, the internet of things device cannot be in communication connection with the server due to an abnormal server, that is, the device cannot be bound to the device group when the internet of things device is in an offline state. For another example, the terminal cannot send a device addition request to the server due to a network abnormality, and in this case, the device cannot be bound to the device group.
In order to solve the above problem, an embodiment of the present application provides a device binding method. The equipment access method provided by the embodiment of the application can be applied to an intelligent home system constructed by various Internet of things equipment, servers and terminals through the Internet of things technology. For example, the method can be applied to an application environment as shown in fig. 1, where fig. 1 is an application environment diagram of a device binding method provided in an embodiment of the present application. The intelligent furniture system can comprise a terminal 101, an internet of things device 102 and a server 103. The terminal 101 can communicate with the internet of things device 102 in a near field communication mode, and the server 103 communicates with the terminal 101 and the internet of things device through a network. The server 103 may be implemented as a stand-alone server or a server cluster composed of a plurality of servers. The internet of things device 102 may be various smart homes, for example, a smart refrigerator, a smart air conditioner, a smart speaker, a smart television, a smart air conditioner, a smart floor sweeping robot, a smart curtain, a smart lock, a smart lamp, and the like.
Referring to fig. 2, fig. 2 is a flowchart illustrating a device binding method provided in an embodiment of the present application, where the method is applied to a terminal, and the method includes the following steps:
s201, receiving an equipment certificate and first equipment information of the Internet of things equipment, which are sent by the Internet of things equipment.
When the terminal receives the device certificate and the first device information of the internet of things device sent by the internet of things device, S202 may be executed. The condition for executing S202 is that the terminal receives the device certificate and the first device information of the internet of things device sent by the internet of things device, that is, no matter whether the internet of things device is in an online state or an offline state, if the terminal receives the device certificate and the first device information of the internet of things device sent by the internet of things device, S202 may be executed. The online state refers to a state that the internet of things equipment and the server are in communication connection, and the offline state refers to a state that the internet of things equipment and the server are not in communication connection.
It should be noted that the device certificate is, for example, a certificate obtained by encrypting a Media Access Control (MAC) address, an IP address, a device type, a device model, vendor information, and the like of the device of the internet of things, and the first device information includes, for example, the MAC address, the IP address, the device type, the device model, the vendor information, and the like of the device of the internet of things.
S202, carrying out validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information to obtain a validity verification result.
The method comprises the steps of comparing equipment information obtained by decrypting an equipment certificate with first equipment information, and if the equipment information obtained by decrypting the equipment certificate is consistent with the first equipment information or the similarity between the equipment information obtained by decrypting the equipment certificate and the first equipment information is larger than a first preset similarity threshold, determining that the equipment of the Internet of things is legal equipment, and obtaining a legality verification result that the legality verification is passed.
The comparison consistency refers to that each piece of device information obtained through decryption is consistent with corresponding first device information, for example, the device information obtained through decryption includes a MAC address 1, an IP address 1, and a device type 1, the first device information includes a MAC address 2, an IP address 2, and a device type 2, and if the MAC address 1 is consistent with the MAC address 2, the IP address 1 is consistent with the IP address 2, and the device type 1 is consistent with the device type 2, it is determined that the device information obtained through decryption is consistent with the first device information.
The similarity between the device information obtained through decryption and the first device information is greater than a first preset similarity threshold, for example, the device information obtained through decryption includes 10 pieces of information, the first device information includes 11 pieces of information, if the 10 pieces of information are consistent with 10 pieces of information in the 11 pieces of information, the similarity between the device information obtained through decryption and the first device information is equal to a ratio of 10 to 11, that is, the similarity is equal to 0.91, and if the first preset similarity threshold is equal to 0.9, since the similarity between the device information obtained through decryption and the first device information is greater than the first preset similarity threshold, in this case, it is determined that the internet of things device is a legal device, and the obtained validity verification result is that validity verification passes.
It can be understood that if the similarity between the device information obtained through decryption and the first device information is not greater than the first preset similarity threshold, it is determined that the internet of things device is an illegal device, and the obtained validity verification result is that the validity is not verified.
And S203, if the validity verification result is that the validity verification is passed, binding the Internet of things equipment to the target equipment group, and sending the family certificate corresponding to the target equipment group to the Internet of things equipment.
In this embodiment, the target device group is an application group to be added by the internet of things device, for example, a family is taken as a unit, the target device group is a device group corresponding to the family to be added by the internet of things device, and when the terminal receives the device certificate and the first device information, the screen of the terminal can display the target device group. If the validity verification result is that the validity verification is passed, the terminal can determine that the internet of things device is a valid device, bind the internet of things device to the target device group, and send the home certificate corresponding to the target device group to the internet of things device. After the internet of things equipment is bound to the target equipment group, the user can control the internet of things equipment, for example, the internet of things equipment is an intelligent curtain, and the user can control the opening and closing of the intelligent curtain. The home certificate may be a certificate obtained by encrypting home information, where the home information includes, for example, an identifier of a target device group, a creator name of the target device group, and authority information of the creator. One device group corresponds to one family certificate, when the terminal sends the family certificate corresponding to the target device group to the Internet of things device, and after the Internet of things device receives the family certificate, the Internet of things device can determine that the Internet of things device has already joined the target device group.
According to the device binding method provided by the embodiment, the device certificate and the first device information of the internet of things device sent by the internet of things device are received, the legitimacy verification is performed on the internet of things device according to the device certificate and the first device information, the legitimacy verification result is obtained, if the legitimacy verification result is that the legitimacy verification is passed, the internet of things device is bound to the target device group, and the home certificate corresponding to the target device group is sent to the internet of things device. The device binding method provided by the embodiment does not depend on whether the internet of things device is in communication connection with the server or not, and does not depend on whether the terminal can normally access the network, but the terminal executes the device binding process after receiving the device certificate of the internet of things device and the first device information sent by the internet of things device, so that the internet of things device is bound to the target device group, the home certificate is sent to the internet of things device, and the binding of the internet of things device is completed.
Referring to fig. 3, fig. 3 is a schematic flowchart of a validity verification method according to an embodiment of the present application. The embodiment relates to an optional implementation manner of how to perform validity verification on the internet of things device according to the device certificate and the first device information to obtain a validity verification result. On the basis of the above embodiment, the above S202 may be implemented as follows:
s301, the device certificate is decrypted to obtain second device information.
The second device information includes, for example, a MAC address, an IP address, a device type, a device model, vendor information, and the like of the internet of things device.
S302, if the second device information is consistent with the first device information, determining that the validity verification result is validity verification passing.
It should be noted that the fact that the second device information is consistent with the first device information in this step may mean that each piece of the second device information is consistent with the corresponding piece of the first device information, or that the similarity between the second device information and the first device information is greater than a preset similarity threshold. If the second device information is consistent with the first device information, determining that the validity verification result is validity verification pass,
for example, after the second device information is obtained, the second device information may be compared with the first device information, and if each piece of second device information is consistent with the corresponding first device information, it is determined that the validity verification result is that the validity verification passes.
According to the method provided by the embodiment, the second device information is obtained by decrypting the device certificate, and if the second device information is consistent with the first device information, the validity verification result is determined to be that the validity verification is passed, so that the validity of the internet of things device is verified, and the subsequent internet of things devices bound to the target device group are all legal devices.
In some embodiments, after the terminal binds the internet of things device to the target device group and sends the home certificate corresponding to the target device group to the internet of things device, the method may further include the following steps:
sending a binding request to a server, wherein the binding request carries the equipment identifier of the equipment of the Internet of things, the identifier of the target equipment group, the equipment certificate and the first equipment information, and is used for instructing the server to carry out validity verification on the equipment of the Internet of things according to the equipment certificate and the first equipment information, and binding the equipment of the Internet of things to the target equipment group after the validity verification is passed. The device identifier includes, for example, a MAC address, an IP address, a device model, a device serial number, and the like, and the identifier of the target device group includes, for example, a serial number of the target device group, a name of the target device group, a creator name of the target device group, and the like.
It should be noted that, after the terminal binds the internet of things device to the target device group, a binding request may also be sent to the server, after the server receives the binding request, the server may decrypt the device certificate to obtain third device information, if the third device information is consistent with the first device information, it is determined that the validity of the internet of things device passes verification, and after the validity passes verification, the internet of things device is bound to the target device group, where the third device information includes, for example, an MAC address, an IP address, a device type, a device model, manufacturer information, and the like of the internet of things device.
In some embodiments, after the terminal binds the internet of things device to the target device group, the binding request sent to the server includes the device identifier of the internet of things device and the identifier of the target device group, and the server does not need to perform validity verification on the internet of things device, that is, the server considers that the validity authentication of the terminal on the internet of things device is trustable, and the internet of things device is directly bound to the target device group as long as the device identifier sent by the terminal and the identifier of the target device group are received.
Optionally, in some embodiments, after sending the binding request to the server, if the server passes the validity verification of the internet of things device, the method may further include the following steps:
and receiving notification information sent by the server, wherein the notification information is used for notifying the server that the internet of things equipment is bound to the target equipment group.
In this embodiment, after the terminal sends the binding request to the server, if the server performs validity verification on the internet of things device according to the device certificate and the first device information, and binds the internet of things device to the target device group after the validity verification is passed, the server may send notification information to the terminal, and accordingly, the terminal receives the notification information sent by the server, and after receiving the notification information, the terminal can further determine that the internet of things device bound to the target device group is a valid device.
It should be noted that, the server binds the internet of things device to the target device group to obtain a new target device group, and the server may synchronize the new target device group to other terminals, and the other terminals may display the new target device group. For example, after the terminal a receives the device certificate and the first device information sent by the internet of things device, the terminal a binds the internet of things device to the target device group according to the device certificate and the first device information, then, the terminal a sends a binding request to the server, if the server verifies the legitimacy of the internet of things device according to the device certificate and the first device information, and after the legitimacy is verified, the server binds the internet of things device to the target device group to obtain a new target device group, and sends the new target device group to the terminal B, so that the new target device group can be displayed on the terminal B. If the terminal A is used by the user A and the terminal B is used by the user B, the user A and the user B can both see a new target equipment group, and the scene is suitable for a user to share the target equipment group with other users, and the other users can also see the new target equipment group through other terminals in time.
Optionally, in some embodiments, after sending the binding request to the server, if the server fails to verify the validity of the internet of things device, the method may further include the step shown in fig. 4. As shown in fig. 4, fig. 4 shows a method for rejecting internet of things devices, and fig. 4 is a schematic flow chart of rejecting internet of things devices from a target device group according to an embodiment of the present application. The method comprises the following steps:
s401, deleting indication information sent by the server is received, wherein the deleting indication information is information sent to the terminal after the server fails to verify the validity of the Internet of things equipment.
After the server receives the binding request sent by the terminal, the server carries out validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information, if the validity verification on the Internet of things equipment fails, the server sends deletion indication information to the terminal, and correspondingly, the terminal receives the deletion indication information sent by the server.
S402, in response to the deletion indication information, the Internet of things equipment is removed from the target equipment group.
According to the method provided by the embodiment, the Internet of things equipment is removed from the target equipment group by receiving the deletion indication information sent by the server and responding to the deletion indication information, and if the terminal binds illegal Internet of things equipment to the target equipment group, the server can timely find illegal Internet of things equipment, so that the terminal is indicated by the deletion indication information to remove illegal Internet of things equipment from the target equipment group, and the Internet of things equipment in the target equipment group is further ensured to be legal.
Referring to fig. 5, fig. 5 is a schematic flowchart of a method for receiving a device certificate and first device information according to an embodiment of the present application. The embodiment relates to an optional implementation manner of how a terminal receives a device certificate and first device information of an internet of things device sent by the internet of things device. On the basis of the foregoing embodiment, the receiving, by the S201, the device certificate and the first device information of the internet of things device, which are sent by the internet of things device, may be implemented by the following steps:
s501, sending a request message to the Internet of things equipment in a near field communication mode, wherein the request message is used for acquiring an equipment certificate and first equipment information of the Internet of things equipment.
The short-range communication method includes, for example, ZigBee and bluetooth communication. ZigBee is also called ZigBee, and is a wireless network protocol for low-speed short-distance transmission. The terminal can send a request message to the Internet of things equipment in a near field communication mode.
Optionally, before sending the request message to the internet of things device in the near field communication manner, the method may further include the following steps:
acquiring state information of the Internet of things equipment from the Internet of things equipment in a near field communication mode;
and if the state information shows that the equipment of the Internet of things is in an offline state, determining that the equipment of the Internet of things is not in communication connection with the server.
Correspondingly, in the above S501, sending the request message to the internet of things device in the near field communication manner may be implemented in the following manner:
and if the Internet of things equipment is determined not to be in communication connection with the server, sending a request message to the Internet of things equipment in a near field communication mode.
It should be noted that, the obtaining of the state information of the internet of things device from the internet of things device through the near field communication method can be implemented through the following two methods:
the first method is as follows: after the terminal and the Internet of things equipment establish communication connection in a near field communication mode, the terminal sends a state request message to the Internet of things equipment, correspondingly, after the Internet of things equipment receives the state request message, the state information of the Internet of things equipment is sent to the terminal, and the terminal can receive the state information of the Internet of things equipment. Namely, the internet of things equipment passively sends the state information of the internet of things equipment to the terminal.
The second method comprises the following steps: after the terminal and the internet of things equipment are in communication connection in a near field communication mode, the internet of things equipment can send state information of the internet of things equipment to the terminal, and accordingly the terminal receives the state information of the internet of things equipment. Namely, the internet of things equipment actively sends the state information of the internet of things equipment to the terminal.
The state information of the internet of things device is true or false, for example. And when the state information is true, the Internet of things equipment is in an online state, and then the communication connection between the Internet of things equipment and the server is determined. And when the state information is false, the internet of things equipment is in an offline state, and the internet of things equipment is determined not to be in communication connection with the server. Or, the status information of the internet of things device is 1 or 0, for example. And when the state information is 1, indicating that the equipment of the Internet of things is in an online state, and determining the communication connection between the equipment of the Internet of things and the server. And when the state information is 0, the internet of things equipment is in an offline state, and the internet of things equipment is determined not to be in communication connection with the server.
S502, receiving a device certificate and first device information sent by the Internet of things device.
In the conventional technology, when the network is abnormal, the terminal cannot send a device addition request to the server, so that the server cannot bind the device to the device group. In this embodiment, the request message is sent to the internet of things device in a near field communication manner, the device certificate and the first device information sent by the internet of things device are received, the legitimacy of the internet of things device is verified according to the device certificate and the first device information, and the internet of things device is bound to the target device group when the legitimacy verification is passed. Therefore, normal operation independent of a network is realized, the Internet of things equipment can be bound to the target equipment group, and the equipment binding reliability is guaranteed.
In some embodiments, if the state information indicates that the internet of things device is in an online state, the communication connection between the internet of things device and the server is determined. If the communication connection between the internet of things equipment and the server is determined, the terminal can send an equipment binding request to the server, and the server responds to the equipment binding request to bind the internet of things equipment to the target equipment group. The device binding request comprises an identifier of the Internet of things device and an identifier of the target device group.
It should be noted that, when the internet of things device is in an offline state, the internet of things device may be bound to the target device group by using the embodiment corresponding to fig. 2. If the internet of things equipment is in the online state, the method provided by the embodiment can also be adopted to bind the internet of things equipment to the target equipment group, so that the normal binding of the internet of things equipment can still be realized when the internet of things equipment is in the online state.
Referring to fig. 6, fig. 6 is a flowchart illustrating another device binding method according to an embodiment of the present application. The method is applied to the Internet of things equipment, and comprises the following steps:
s601, sending the device certificate and the first device information of the Internet of things device to the terminal, so that the terminal conducts validity verification on the Internet of things device according to the device certificate and the first device information, and the Internet of things device is bound to the target device group under the condition that the validity verification is passed.
The device certificate is, for example, a certificate obtained by encrypting a MAC address, an IP address, a device type, a device model, vendor information, and the like of the device in the internet of things, and the first device information includes, for example, the MAC address, the IP address, the device type, the device model, the vendor information, and the like of the device in the internet of things.
It should be noted that sending the device certificate and the first device information of the internet of things device to the terminal may be implemented in two ways:
the first method is as follows: receiving a request message sent by a terminal in a near field communication mode, wherein the request message is used for acquiring a device certificate and first device information of equipment of the Internet of things; and responding to the request message, and sending the equipment certificate and the first equipment information of the equipment of the Internet of things to the terminal.
In this way, after the terminal and the internet of things device establish communication connection in a near field communication manner, the terminal can send request information to the internet of things device, and correspondingly, the internet of things device receives the request information and sends a device certificate and first device information of the internet of things device to the terminal in response to the request information, that is, the internet of things device passively sends the device certificate and the first device information of the internet of things device to the terminal.
The second method comprises the following steps: and when the fact that the Internet of things equipment is not in communication connection with the server is determined, sending the equipment certificate and the first equipment information of the Internet of things equipment to the terminal.
Namely, when the internet of things device determines that the internet of things device is not in communication connection with the server, if the internet of things device is in communication connection with the terminal in a near field communication mode, the internet of things device can actively send a device certificate and first device information of the internet of things device to the terminal.
It should be noted that, the terminal performs validity verification on the internet of things device according to the device certificate and the first device information, and the validity verification can be implemented in the following manner:
and comparing the device information obtained by decrypting the device certificate with the first device information, and if the comparison is consistent or the similarity between the device information obtained by decrypting and the first device information is greater than a preset similarity threshold, determining that the equipment of the Internet of things is legal equipment, and obtaining a legality verification result that the legality verification passes.
S602, receiving a home certificate corresponding to a target device group sent by a terminal, wherein the home certificate is a certificate sent by the terminal under the condition that the validity verification is passed.
In the method provided by the embodiment, the device certificate and the first device information of the internet of things device are sent to the terminal, and the home certificate corresponding to the target device group sent by the terminal is received. The device binding method provided by the embodiment does not depend on whether the internet of things device is in communication connection with the server or not, and does not depend on whether the terminal can normally access the network, but the internet of things device sends the device certificate and the first device information of the internet of things device to the terminal, so that the terminal executes the device binding process according to the device certificate and the first device information, thereby binding the internet of things device to the target device group and completing the binding of the internet of things device.
Referring to fig. 7, fig. 7 is a schematic flowchart of a verification information sending method provided in an embodiment of the present application, where the method is applied to an internet of things device, and the method includes the following steps:
and S701, receiving the family information corresponding to the target equipment group sent by the terminal.
The family information includes an identification of the target device group and a creator name of the target device group.
S702, when the Internet of things equipment and the server recover communication connection, sending a verification message to the server, wherein the verification message comprises an equipment certificate, first equipment information, a family certificate and family information, and is used for indicating the server to carry out validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information, and carrying out validity verification on the family certificate according to the family certificate and the family information under the condition that the validity verification is passed.
It should be noted that the process of the server performing the validity verification on the internet of things device according to the device certificate and the first device information is similar to the process of performing the validity verification on the internet of things device by the terminal, and is not described here again.
The server can decrypt the family certificate, compares the information obtained through decryption with the family information, determines that the legitimacy of the family certificate passes verification if the information obtained through decryption is consistent with the family information or the similarity between the information obtained through decryption and the family information is larger than a second preset similarity threshold, and binds the internet of things equipment to the target equipment group to obtain a new target equipment group under the condition that the legitimacy of the family certificate passes verification.
The comparison matching here means that the information obtained by decrypting the home certificate matches with the corresponding home, for example, the information obtained by decryption includes an identifier 1 of the device group and a creator name 1 of the device group, the home information includes an identifier 2 of the target device group and a creator name 2 of the target device group, and if the identifier 1 matches with the identifier 2 and the creator name 1 matches with the creator name 2, it is determined that the information obtained by decryption matches with the home information.
If the similarity between the decrypted information and the family information is greater than the second preset similarity threshold, for example, the decrypted information includes 10 pieces of information, the family information includes 11 pieces of information, and if the 10 pieces of information are consistent with 10 pieces of information in the 11 pieces of information, the similarity between the decrypted information and the family information is equal to a ratio of 10 to 11, that is, the similarity is equal to 0.91, and if the second preset similarity threshold is equal to 0.9, since the similarity between the decrypted information and the family information is greater than the second preset similarity threshold, in this case, it is determined that the validity verification on the family certificate is passed.
Referring to fig. 8, fig. 8 is a signaling flowchart of a device binding method provided in an embodiment of the present application. The method comprises the following steps:
s801, the Internet of things equipment sends the equipment certificate and the first equipment information of the Internet of things equipment to the terminal.
The method comprises the steps that the equipment certificate and first equipment information of the equipment of the internet of things are sent to a terminal by the equipment of the internet of things, and correspondingly, the equipment certificate and the first equipment information of the equipment of the internet of things sent by the equipment of the internet of things are received by the terminal.
S802, the terminal conducts validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information to obtain a validity verification result.
And S803, if the validity verification result is that the validity verification is passed, the Internet of things equipment is bound to the target equipment group.
S804, the terminal sends the family certificate corresponding to the target equipment group to the Internet of things equipment.
S805, the terminal sends a binding request to the server, wherein the binding request carries the device identifier of the Internet of things device, the identifier of the target device group, the device certificate and the first device information.
S806, the server verifies the legitimacy of the Internet of things equipment, and binds the Internet of things equipment to the target equipment group after the legitimacy is verified.
S807, the server transmits the notification information to the terminal.
The notification information is used for notifying the server that the internet of things device is bound to the target device group, and correspondingly, the terminal receives the notification information sent by the server.
Referring to fig. 9, fig. 9 is a signaling flow diagram of another device binding method according to an embodiment of the present application. The method comprises the following steps:
s901, the Internet of things equipment sends the equipment certificate and the first equipment information of the Internet of things equipment to the terminal.
The method comprises the steps that the equipment certificate and first equipment information of the equipment of the Internet of things are sent to a terminal by the equipment of the Internet of things, and correspondingly, the equipment certificate and the first equipment information of the equipment of the Internet of things sent by the equipment of the Internet of things are received by the terminal.
S902, the terminal carries out validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information to obtain a validity verification result.
And S903, if the validity verification result is that the validity verification is passed, binding the Internet of things equipment to the target equipment group.
And S904, the terminal sends the family certificate corresponding to the target equipment group to the Internet of things equipment.
And S905, the terminal sends the family information corresponding to the target equipment group to the Internet of things equipment.
S906, the Internet of things equipment sends a verification message to the server, wherein the verification message comprises the equipment certificate, the first equipment information, the family certificate and the family information.
S907, the server verifies the legitimacy of the Internet of things equipment according to the equipment certificate and the first equipment information, and verifies the legitimacy of the family certificate according to the family certificate and the family information under the condition that the legitimacy verification is passed.
And S908, after the server passes the validity verification of the home certificate, the Internet of things equipment is bound to the target equipment group.
And S909, the server sends notification information to the Internet of things equipment.
The notification information is used for notifying the server that the internet of things device is bound to the target device group, and correspondingly, the internet of things device receives the notification information sent by the server.
It should be understood that, although the steps in the flowcharts related to the embodiments are shown in sequence as indicated by the arrows, the steps are not necessarily executed in sequence as indicated by the arrows. The steps are not performed in the exact order shown and described, and may be performed in other orders, unless explicitly stated otherwise. Moreover, at least a part of the steps in the flowcharts related to the above embodiments may include multiple steps or multiple stages, which are not necessarily performed at the same time, but may be performed at different times, and the order of performing the steps or stages is not necessarily sequential, but may be performed alternately or alternately with other steps or at least a part of the steps or stages in other steps.
Based on the same inventive concept, the embodiment of the present application further provides an apparatus binding apparatus for implementing the above-mentioned apparatus binding method. The implementation scheme for solving the problem provided by the apparatus is similar to the implementation scheme described in the above method, so specific limitations in one or more device binding apparatus embodiments provided below may refer to the limitations in the above device binding method, and are not described herein again.
In an embodiment, as shown in fig. 10, fig. 10 is a schematic structural diagram of a device binding apparatus provided in an embodiment of the present application, where the apparatus 1000 is disposed in a terminal, and the apparatus 1000 includes:
a first receiving module 1001, configured to receive a device certificate and first device information of the internet of things device, where the device certificate and the first device information are sent by the internet of things device;
the verification module 1002 is configured to perform validity verification on the internet of things device according to the device certificate and the first device information to obtain a validity verification result;
a binding module 1003, configured to bind the internet of things device to a target device group if the validity verification result is that the validity verification passes, and send a home certificate corresponding to the target device group to the internet of things device.
The legality verification of the internet of things equipment according to the equipment certificate and the first equipment information to obtain a legality verification result comprises the following steps:
decrypting the equipment certificate to obtain second equipment information;
and if the second equipment information is consistent with the first equipment information, determining that the validity verification result is validity verification pass.
In one embodiment, the apparatus 1000 further comprises:
the sending module is used for sending a binding request to a server, wherein the binding request carries the equipment identifier of the Internet of things equipment, the identifier of the target equipment group, the equipment certificate and the first equipment information, and is used for indicating the server to carry out validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information, and binding the Internet of things equipment to the target equipment group after the validity verification is passed.
In one embodiment, the first receiving module 1001 is specifically configured to send a request message to the internet of things device in a near field communication manner, where the request message is used to obtain a device certificate and first device information of the internet of things device;
and receiving the equipment certificate and the first equipment information sent by the Internet of things equipment.
In one embodiment, the first receiving module 1001 is further configured to receive notification information sent by the server, where the notification information is used to notify the server that the internet of things device is bound to the target device group.
In one embodiment, the first receiving module 1001 is further configured to receive deletion indication information sent by the server, where the deletion indication information is information sent to the terminal after the server fails to verify the validity of the internet of things device; removing the Internet of things equipment from the target equipment group in response to the deletion indication information
In an embodiment, as shown in fig. 11, fig. 11 is a schematic structural diagram of another device binding apparatus provided in the embodiment of the present application, where the apparatus 1100 is disposed in an internet of things device, and the apparatus 1100 includes:
a sending module 1101, configured to send a device certificate and first device information of the internet of things device to a terminal, so that the terminal performs validity verification on the internet of things device according to the device certificate and the first device information, and binds the internet of things device to a target device group when the validity verification passes;
a second receiving module 1102, configured to receive a home certificate corresponding to the target device group sent by the terminal, where the home certificate is a certificate sent by the terminal when the validity verification passes.
In one embodiment, the sending module 1101 is specifically configured to receive a request message sent by the terminal in a near field communication manner, where the request message is used to obtain a device certificate and first device information of the internet of things device; responding to the request message, and sending a device certificate and first device information of the Internet of things device to the terminal; alternatively, the first and second electrodes may be,
and when the fact that the Internet of things equipment is not in communication connection with the server is determined, sending the equipment certificate and the first equipment information of the Internet of things equipment to the terminal.
In one embodiment, the second receiving module 1101 is further configured to receive family information corresponding to the target device group sent by the terminal;
the sending module 1101 is further configured to send a verification message to the server when the internet of things device and the server recover communication connection, where the verification message includes the device certificate, the first device information, the home certificate, and the home information, and is used to instruct the server to perform validity verification on the internet of things device according to the device certificate and the first device information, and perform validity verification on the home certificate according to the home certificate and the home information when validity verification passes.
The various modules in the device binding apparatus described above may be implemented in whole or in part by software, hardware, and combinations thereof. The modules can be embedded in a hardware form or independent from a processor in the computer device, and can also be stored in a memory in the computer device in a software form, so that the processor can call and execute operations corresponding to the modules.
In one embodiment, a computer device is provided, where the computer device may be a terminal or an internet of things device, and an internal structure diagram of the computer device may be as shown in fig. 12. The computer device comprises a processor, a memory, a communication interface, a display screen and an input device which are connected through a system bus. Wherein the processor of the computer device is configured to provide computing and control capabilities. The memory of the computer device comprises a nonvolatile storage medium and an internal memory. The non-volatile storage medium stores an operating system and a computer program. The internal memory provides an environment for the operation of an operating system and computer programs in the non-volatile storage medium. The communication interface of the computer device is used for carrying out wired or wireless communication with an external terminal, and the wireless communication can be realized through WIFI, a mobile cellular network, NFC (near field communication) or other technologies. The computer program is executed by a processor to implement a device binding method. The display screen of the computer equipment can be a liquid crystal display screen or an electronic ink display screen, and the input device of the computer equipment can be a touch layer covered on the display screen, a key, a track ball or a touch pad arranged on the shell of the computer equipment, an external keyboard, a touch pad or a mouse and the like.
Those skilled in the art will appreciate that the architecture shown in fig. 12 is merely a block diagram of some of the structures associated with the disclosed aspects and is not intended to limit the computing devices to which the disclosed aspects apply, as particular computing devices may include more or less components than those shown, or may combine certain components, or have a different arrangement of components.
In one embodiment, a terminal is provided, comprising a memory and a processor, the memory having stored therein a computer program that, when executed by the processor, performs the steps of the method provided by the above-mentioned embodiments.
Receiving a device certificate and first device information of the Internet of things device, which are sent by the Internet of things device;
carrying out validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information to obtain a validity verification result;
if the validity verification result is that the validity verification is passed, the Internet of things equipment is bound to a target equipment group, and a family certificate corresponding to the target equipment group is sent to the Internet of things equipment.
In one embodiment, the processor, when executing the computer program, further performs the steps of:
decrypting the equipment certificate to obtain second equipment information;
and if the second equipment information is consistent with the first equipment information, determining that the validity verification result is validity verification pass.
In one embodiment, the processor, when executing the computer program, further performs the steps of:
sending a binding request to a server, wherein the binding request carries the device identifier of the internet of things device, the identifier of the target device group, the device certificate and the first device information, and is used for indicating the server to carry out validity verification on the internet of things device according to the device certificate and the first device information, and binding the internet of things device to the target device group after the validity verification is passed.
In one embodiment, the processor, when executing the computer program, further performs the steps of:
sending a request message to the Internet of things equipment in a near field communication mode, wherein the request message is used for acquiring an equipment certificate and first equipment information of the Internet of things equipment;
and receiving the equipment certificate and the first equipment information sent by the Internet of things equipment.
In one embodiment, the processor, when executing the computer program, further performs the steps of:
receiving notification information sent by the server, wherein the notification information is used for notifying the server that the internet of things device is bound to the target device group.
In one embodiment, the processor, when executing the computer program, further performs the steps of:
receiving deletion indicating information sent by the server, wherein the deletion indicating information is information sent to the terminal after the server fails to verify the validity of the equipment of the internet of things;
and in response to the deletion indication information, removing the Internet of things equipment from the target equipment group.
In one embodiment, an internet of things device is provided, which includes a memory and a processor, wherein the memory stores a computer program, and the processor realizes the following steps when executing the computer program:
sending a device certificate and first device information of the Internet of things device to a terminal, carrying out validity verification on the Internet of things device by the terminal according to the device certificate and the first device information, and binding the Internet of things device to a target device group under the condition that validity verification is passed;
and receiving a home certificate corresponding to the target equipment group sent by the terminal, wherein the home certificate is a certificate sent by the terminal under the condition that the validity verification is passed.
In one embodiment, the processor, when executing the computer program, further performs the steps of:
receiving a request message sent by the terminal in a near field communication mode, wherein the request message is used for acquiring a device certificate and first device information of the Internet of things device; responding to the request message, and sending a device certificate and first device information of the Internet of things device to the terminal; alternatively, the first and second electrodes may be,
and when the fact that the Internet of things equipment is not in communication connection with the server is determined, sending the equipment certificate and the first equipment information of the Internet of things equipment to the terminal.
In one embodiment, the processor, when executing the computer program, further performs the steps of:
receiving family information corresponding to the target equipment group sent by the terminal;
when the internet of things equipment and the server recover communication connection, sending a verification message to the server, wherein the verification message comprises the equipment certificate, the first equipment information, the family certificate and the family information and is used for indicating the server to carry out validity verification on the internet of things equipment according to the equipment certificate and the first equipment information, and carrying out validity verification on the family certificate according to the family certificate and the family information under the condition that the validity verification is passed.
In one embodiment, a computer-readable storage medium is provided, on which a computer program is stored, which, when being executed by a processor, carries out the steps of the method provided by the above-mentioned embodiments.
In an embodiment, a computer program product is provided, comprising a computer program which, when executed by a processor, performs the steps of the method provided by the above-described embodiment.
It should be noted that, the user information (including but not limited to user device information, user personal information, etc.) and data (including but not limited to data for analysis, stored data, presented data, etc.) referred to in the present application are information and data authorized by the user or sufficiently authorized by each party.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by hardware instructions of a computer program, which can be stored in a non-volatile computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. Any reference to memory, database, or other medium used in the embodiments provided herein may include at least one of non-volatile and volatile memory. The nonvolatile Memory may include Read-Only Memory (ROM), magnetic tape, floppy disk, flash Memory, optical Memory, high-density embedded nonvolatile Memory, resistive Random Access Memory (ReRAM), Magnetic Random Access Memory (MRAM), Ferroelectric Random Access Memory (FRAM), Phase Change Memory (PCM), graphene Memory, and the like. Volatile Memory can include Random Access Memory (RAM), external cache Memory, and the like. By way of illustration and not limitation, RAM can take many forms, such as Static Random Access Memory (SRAM) or Dynamic Random Access Memory (DRAM), among others. The databases referred to in various embodiments provided herein may include at least one of relational and non-relational databases. The non-relational database may include, but is not limited to, a block chain based distributed database, and the like. The processors referred to in the embodiments provided herein may be general purpose processors, central processing units, graphics processors, digital signal processors, programmable logic devices, quantum computing based data processing logic devices, etc., without limitation.
The technical features of the above embodiments can be arbitrarily combined, and for the sake of brevity, all possible combinations of the technical features in the above embodiments are not described, but should be considered as the scope of the present specification as long as there is no contradiction between the combinations of the technical features.
The above-mentioned embodiments only express several embodiments of the present application, and the description thereof is more specific and detailed, but not construed as limiting the scope of the present application. It should be noted that, for a person skilled in the art, several variations and modifications can be made without departing from the concept of the present application, which falls within the scope of protection of the present application. Therefore, the protection scope of the present application shall be subject to the appended claims.

Claims (15)

1. A device binding method is applied to a terminal, and comprises the following steps:
receiving a device certificate and first device information of the Internet of things device, which are sent by the Internet of things device;
carrying out validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information to obtain a validity verification result;
if the validity verification result is that the validity verification is passed, the Internet of things equipment is bound to a target equipment group, and a family certificate corresponding to the target equipment group is sent to the Internet of things equipment.
2. The method of claim 1, wherein performing validity verification on the internet of things device according to the device certificate and the first device information to obtain a validity verification result comprises:
decrypting the equipment certificate to obtain second equipment information;
and if the second equipment information is consistent with the first equipment information, determining that the validity verification result is validity verification pass.
3. The method according to claim 1 or 2, characterized in that the method further comprises:
sending a binding request to a server, wherein the binding request carries the device identifier of the internet of things device, the identifier of the target device group, the device certificate and the first device information, and is used for indicating the server to carry out validity verification on the internet of things device according to the device certificate and the first device information, and binding the internet of things device to the target device group after the validity verification is passed.
4. The method according to claim 1 or 2, wherein the receiving the device certificate and the first device information of the internet of things device sent by the internet of things device comprises:
sending a request message to the Internet of things equipment in a near field communication mode, wherein the request message is used for acquiring an equipment certificate and first equipment information of the Internet of things equipment;
and receiving the equipment certificate and the first equipment information sent by the Internet of things equipment.
5. The method according to claim 1 or 2, characterized in that the method further comprises:
receiving notification information sent by the server, wherein the notification information is used for notifying the server that the internet of things device is bound to the target device group.
6. The method of claim 5, further comprising:
receiving deletion indication information sent by the server, wherein the deletion indication information is information sent to the terminal after the server fails to verify the validity of the Internet of things equipment;
and in response to the deletion indication information, removing the Internet of things equipment from the target equipment group.
7. A device binding method is applied to Internet of things devices, and comprises the following steps:
sending a device certificate and first device information of the Internet of things device to a terminal, carrying out validity verification on the Internet of things device by the terminal according to the device certificate and the first device information, and binding the Internet of things device to a target device group under the condition that validity verification is passed;
and receiving a home certificate corresponding to the target equipment group sent by the terminal, wherein the home certificate is a certificate sent by the terminal under the condition that the validity verification is passed.
8. The method of claim 7, wherein the sending the device certificate and the first device information of the IOT device to the terminal comprises:
receiving a request message sent by the terminal in a near field communication mode, wherein the request message is used for acquiring a device certificate and first device information of the equipment of the Internet of things; responding to the request message, and sending a device certificate and first device information of the Internet of things device to the terminal; alternatively, the first and second electrodes may be,
and when the fact that the Internet of things equipment is not in communication connection with the server is determined, sending the equipment certificate and the first equipment information of the Internet of things equipment to the terminal.
9. The method according to claim 7 or 8, characterized in that the method further comprises:
receiving family information corresponding to the target equipment group sent by the terminal;
when the internet of things equipment and the server recover communication connection, sending a verification message to the server, wherein the verification message comprises the equipment certificate, the first equipment information, the family certificate and the family information and is used for indicating the server to carry out validity verification on the internet of things equipment according to the equipment certificate and the first equipment information and carrying out validity verification on the family certificate according to the family certificate and the family information under the condition that the validity verification is passed.
10. An apparatus for binding a device, the apparatus being disposed in a terminal, the apparatus comprising:
the first receiving module is used for receiving the equipment certificate and the first equipment information of the Internet of things equipment, which are sent by the Internet of things equipment;
the verification module is used for verifying the legality of the Internet of things equipment according to the equipment certificate and the first equipment information to obtain a legality verification result;
and the binding module is used for binding the Internet of things equipment to a target equipment group and sending the family certificate corresponding to the target equipment group to the Internet of things equipment if the validity verification result is that the validity verification passes.
11. The device for binding equipment is characterized by being arranged on the equipment of the Internet of things, and comprises:
the sending module is used for sending the equipment certificate and the first equipment information of the Internet of things equipment to a terminal, so that the terminal conducts validity verification on the Internet of things equipment according to the equipment certificate and the first equipment information, and the Internet of things equipment is bound to a target equipment group under the condition that validity verification is passed;
and the second receiving module is configured to receive a home certificate corresponding to the target device group, where the home certificate is a certificate sent by the terminal when the validity verification is passed.
12. A terminal comprising a memory and a processor, the memory storing a computer program, characterized in that the processor, when executing the computer program, implements the steps of the method of any of claims 1 to 6.
13. An internet of things device comprising a memory and a processor, the memory storing a computer program, wherein the processor when executing the computer program implements the steps of the method of any one of claims 7 to 9.
14. A computer-readable storage medium, on which a computer program is stored, which, when being executed by a processor, carries out the steps of the method of any one of claims 1 to 9.
15. A computer program product comprising a computer program, characterized in that the computer program realizes the steps of the method of any one of claims 1 to 9 when executed by a processor.
CN202210366515.8A 2022-04-08 2022-04-08 Equipment binding method, device, terminal, internet of things equipment and storage medium Active CN114666151B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210366515.8A CN114666151B (en) 2022-04-08 2022-04-08 Equipment binding method, device, terminal, internet of things equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210366515.8A CN114666151B (en) 2022-04-08 2022-04-08 Equipment binding method, device, terminal, internet of things equipment and storage medium

Publications (2)

Publication Number Publication Date
CN114666151A true CN114666151A (en) 2022-06-24
CN114666151B CN114666151B (en) 2024-02-27

Family

ID=82034762

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210366515.8A Active CN114666151B (en) 2022-04-08 2022-04-08 Equipment binding method, device, terminal, internet of things equipment and storage medium

Country Status (1)

Country Link
CN (1) CN114666151B (en)

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102957584A (en) * 2011-08-25 2013-03-06 华为终端有限公司 Home network equipment management method, control equipment and home network equipment
CN109787769A (en) * 2018-12-25 2019-05-21 深圳市安信认证系统有限公司 Offline authentication method, user terminal and the device end of internet of things equipment
CN110995759A (en) * 2019-12-23 2020-04-10 中国联合网络通信集团有限公司 Access method and device of Internet of things
US20200273586A1 (en) * 2019-02-26 2020-08-27 Electronics And Telecommunications Research Institute Internet of things device, server for security of the internet of things device, and method for security of the internet of things device
CN112118229A (en) * 2020-08-20 2020-12-22 宁波奥克斯电气股份有限公司 Internet of things equipment, server security authentication method and device and electronic equipment
CN112822216A (en) * 2021-02-24 2021-05-18 成都杰微科技有限公司 Authentication method for binding of Internet of things sub-equipment
CN113037865A (en) * 2021-04-07 2021-06-25 北京金山云网络技术有限公司 Processing method, device and system of Internet of things equipment
CN113660099A (en) * 2021-09-01 2021-11-16 珠海格力电器股份有限公司 Authentication method, authentication server and user equipment server of Internet of things equipment
CN114079666A (en) * 2020-08-06 2022-02-22 阿里巴巴集团控股有限公司 Equipment control system, method and device

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102957584A (en) * 2011-08-25 2013-03-06 华为终端有限公司 Home network equipment management method, control equipment and home network equipment
CN109787769A (en) * 2018-12-25 2019-05-21 深圳市安信认证系统有限公司 Offline authentication method, user terminal and the device end of internet of things equipment
US20200273586A1 (en) * 2019-02-26 2020-08-27 Electronics And Telecommunications Research Institute Internet of things device, server for security of the internet of things device, and method for security of the internet of things device
CN110995759A (en) * 2019-12-23 2020-04-10 中国联合网络通信集团有限公司 Access method and device of Internet of things
CN114079666A (en) * 2020-08-06 2022-02-22 阿里巴巴集团控股有限公司 Equipment control system, method and device
CN112118229A (en) * 2020-08-20 2020-12-22 宁波奥克斯电气股份有限公司 Internet of things equipment, server security authentication method and device and electronic equipment
CN112822216A (en) * 2021-02-24 2021-05-18 成都杰微科技有限公司 Authentication method for binding of Internet of things sub-equipment
CN113037865A (en) * 2021-04-07 2021-06-25 北京金山云网络技术有限公司 Processing method, device and system of Internet of things equipment
CN113660099A (en) * 2021-09-01 2021-11-16 珠海格力电器股份有限公司 Authentication method, authentication server and user equipment server of Internet of things equipment

Also Published As

Publication number Publication date
CN114666151B (en) 2024-02-27

Similar Documents

Publication Publication Date Title
EP3454238B1 (en) Registration and authorization method, device and system
EP3356961B1 (en) Peer-to-peer syncable storage system
Michalas The lord of the shares: Combining attribute-based encryption and searchable encryption for flexible data sharing
CN107579958B (en) Data management method, device and system
EP3937458B1 (en) Blockchain integrated stations and automatic node adding methods and apparatuses
CN109286638B (en) Automobile diagnosis equipment authentication method and related device
CN109302311B (en) Block chain network for realizing network situation awareness, awareness method and electronic equipment
CN105933374B (en) A kind of mobile terminal data backup method, system and mobile terminal
KR20200085095A (en) Electronic apparatus and method for managing data based on block chain
CN111199486B (en) Data processing method, device and storage medium based on blockchain network
CN115348107A (en) Internet of things equipment secure login method and device, computer equipment and storage medium
CN113434837B (en) Method and device for equipment identity authentication and smart home system
CN114650182B (en) Identity authentication method, system, device, gateway equipment, equipment and terminal
CN117040765A (en) Smart grid terminal authentication method and device, storage medium and computer equipment
CN114666155B (en) Equipment access method, system, device, internet of things equipment and gateway equipment
CN114666151B (en) Equipment binding method, device, terminal, internet of things equipment and storage medium
CN116684102A (en) Message transmission method, message verification method, device, equipment, medium and product
CN114238886A (en) IBE-based power grid PMU identity authentication method, device, computer equipment and medium
CN107872312A (en) Symmetric key dynamic creation method, device, equipment and system
CN112583606A (en) Security verification method, server, terminal and storage medium
CN115438353A (en) User data management method and related equipment
CN116561820B (en) Trusted data processing method and related device
CN114879980B (en) Vehicle-mounted application installation method and device, computer equipment and storage medium
CN114785677B (en) Log management method, device, computer equipment, storage medium and program product
CN117061115B (en) Key negotiation method, key negotiation apparatus, computer device, and computer-readable storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant