CN116437353B - Parameter configuration method, device and equipment of hydrological remote terminal unit - Google Patents
Parameter configuration method, device and equipment of hydrological remote terminal unit Download PDFInfo
- Publication number
- CN116437353B CN116437353B CN202310679223.4A CN202310679223A CN116437353B CN 116437353 B CN116437353 B CN 116437353B CN 202310679223 A CN202310679223 A CN 202310679223A CN 116437353 B CN116437353 B CN 116437353B
- Authority
- CN
- China
- Prior art keywords
- bluetooth
- key
- terminal unit
- remote terminal
- authentication server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 46
- 238000004891 communication Methods 0.000 claims abstract description 43
- 230000006870 function Effects 0.000 claims description 8
- 238000004590 computer program Methods 0.000 claims description 3
- 238000011161 development Methods 0.000 description 7
- 238000010586 diagram Methods 0.000 description 7
- XLYOFNOQVPJJNP-UHFFFAOYSA-N water Substances O XLYOFNOQVPJJNP-UHFFFAOYSA-N 0.000 description 5
- 239000011159 matrix material Substances 0.000 description 4
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 230000000694 effects Effects 0.000 description 3
- 230000008569 process Effects 0.000 description 3
- 230000006978 adaptation Effects 0.000 description 2
- 238000003491 array Methods 0.000 description 2
- 238000000354 decomposition reaction Methods 0.000 description 2
- 238000012423 maintenance Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- 230000006798 recombination Effects 0.000 description 2
- 238000005215 recombination Methods 0.000 description 2
- 238000004458 analytical method Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000010267 cellular communication Effects 0.000 description 1
- 230000001413 cellular effect Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000005070 sampling Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/50—Secure pairing of devices
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/009—Security arrangements; Authentication; Protecting privacy or anonymity specially adapted for networks, e.g. wireless sensor networks, ad-hoc networks, RFID networks or cloud networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/80—Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/70—Reducing energy consumption in communication networks in wireless communication networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides a parameter configuration method, a device and equipment of a hydrological remote terminal unit, wherein the method comprises the following steps: receiving a configuration request signal sent by mobile equipment, and sending Bluetooth starting request information to a security authentication server; receiving a first Bluetooth starting key returned by the security authentication server; comparing the first Bluetooth starting key with a second Bluetooth starting key input from outside, and starting a Bluetooth communication link after determining that the first Bluetooth starting key is the same as the second Bluetooth starting key; sending a Bluetooth pairing request to a security authentication server, and receiving a first Bluetooth pairing code returned by the security authentication server; searching a target signal matched with the first Bluetooth pairing code, and establishing a Bluetooth communication channel with target mobile equipment corresponding to the target signal; and receiving the configuration signal sent by the target mobile equipment and configuring according to the configuration signal. The scheme of the invention can realize safe and reliable configuration management of the hydrological remote terminal unit and prevent the equipment from being hijacked and the data communication from being cracked.
Description
Technical Field
The invention relates to the technical field of industrial Internet of things data acquisition, in particular to a parameter configuration method, device and equipment of a hydrological remote terminal unit.
Background
The hydrologic remote terminal unit is data acquisition communication equipment of the Internet of things in the industrial field, and data acquired by a river channel water level meter, a water flow meter, a sensor and the like are sent to the cloud server through a wireless channel, so that hydrologic water affair remote data acquisition is realized.
Before the data acquisition of the hydrological remote terminal unit, a worker is required to carry out parameter configuration, and a mode of connecting the wireless Bluetooth with a smart phone of the worker is generally adopted. The smart phone of the equipment maintainer is connected to the hydrological remote terminal unit and configures the hydrological remote terminal unit through an application program on the mobile phone.
However, this bluetooth configuration increases the safety hazard while improving the maintenance convenience. Non-water service workers can access the hydrological remote terminal unit through the smart phone and Bluetooth of the non-water service workers, illegally configure the hydrological remote terminal unit, hijack and control the hydrological remote terminal unit for field work, and various data security risks are caused.
Disclosure of Invention
The invention aims to solve the technical problem of providing a parameter configuration method, a parameter configuration device and parameter configuration equipment for a hydrological remote terminal unit, which can realize safe and reliable configuration management for the hydrological remote terminal unit and prevent the equipment from being hijacked and data communication from being cracked.
In order to solve the technical problems, the technical scheme of the invention is as follows:
a parameter configuration method of a hydrological remote terminal unit is applied to the hydrological remote terminal unit and comprises the following steps:
receiving a configuration request signal sent by mobile equipment;
according to the configuration request signal, bluetooth start request information is sent to a security authentication server; the bluetooth opening request information includes: the identification information, true random number key and time stamp information of the hydrological remote terminal unit;
receiving a first Bluetooth starting key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit;
comparing the first Bluetooth starting key with a second Bluetooth starting key input from outside, and starting a Bluetooth communication link after determining that the first Bluetooth starting key is the same as the second Bluetooth starting key;
after sending a Bluetooth pairing request to the security authentication server, receiving a first Bluetooth pairing code returned by the security authentication server;
searching a target signal matched with the first Bluetooth pairing code, and establishing a Bluetooth communication channel with target mobile equipment corresponding to the target signal;
and receiving a configuration signal sent by the target mobile equipment, and carrying out parameter configuration according to the configuration signal.
Optionally, the first bluetooth starting key inputs the true random number key into a hash function through a security authentication server to obtain a hash value; and according to the hash value, inquiring at least one password sequence matched with the hash value in a preset password dictionary, and determining the matched password sequence as the first Bluetooth starting key.
Optionally, the byte length of the password sequence is within a first range, and the password sequence corresponds to a continuous line segment path on the magnetic switches arranged in a dot matrix manner of the hydrological remote terminal unit.
Optionally, a first bluetooth opening key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit is received, wherein the first bluetooth opening key is a ciphertext key encrypted by the true random number key according to a preset algorithm, and the first bluetooth opening key is still in an effective time range preset by the timestamp information.
Optionally, the second bluetooth opening key is obtained by sending key obtaining request information to the security authentication server through the mobile device, and then returning the second bluetooth opening key corresponding to the request information by the security authentication server; the key acquisition request information contains identification information of the hydrological remote terminal unit.
Optionally, the second bluetooth key is input to the hydrological remote terminal unit in a manner that a magnetic bar inputs a continuous line segment path on a lattice type magnetic control sequence switch.
Optionally, searching for a target signal matched with the first bluetooth pairing code, and establishing a bluetooth communication channel with a target mobile device corresponding to the target signal, including:
receiving a signal carrying second Bluetooth pairing code information sent by the mobile equipment, determining the signal carrying the second Bluetooth pairing code information as a target signal after confirming that the first Bluetooth pairing code is the same as the second Bluetooth pairing code, and establishing connection with target mobile equipment corresponding to the target signal;
the second Bluetooth pairing code is obtained by sending a message carrying the second Bluetooth pairing code to the mobile equipment requesting configuration through the security authentication server.
The invention also provides a parameter configuration device of the hydrological remote terminal unit, which comprises:
the sending module is used for receiving a configuration request signal sent by the mobile equipment; according to the configuration request signal, bluetooth start request information is sent to a security authentication server; the bluetooth opening request information includes: the identification information, true random number key and time stamp information of the hydrological remote terminal unit;
the configuration module is used for receiving a first Bluetooth starting key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit; comparing the first Bluetooth starting key with a second Bluetooth starting key input from outside, and starting a Bluetooth communication link after determining that the first Bluetooth starting key is the same as the second Bluetooth starting key; after sending a Bluetooth pairing request to the security authentication server, receiving a first Bluetooth pairing code returned by the security authentication server; searching a target signal matched with the first Bluetooth pairing code, and establishing a Bluetooth communication channel with target mobile equipment corresponding to the target signal; and receiving a configuration signal sent by the target mobile equipment, and carrying out parameter configuration according to the configuration signal.
The present invention also provides a computing device comprising: a processor, a memory storing a computer program which, when executed by the processor, performs the method as described above.
The invention also provides a computer readable storage medium storing instructions that, when executed on a computer, cause the computer to perform a method as described above.
The scheme of the invention at least comprises the following beneficial effects:
according to the scheme, the configuration request signal sent by the mobile equipment is received; according to the configuration request signal, bluetooth start request information is sent to a security authentication server; the bluetooth opening request information includes: the identification information, true random number key and time stamp information of the hydrological remote terminal unit; receiving a first Bluetooth starting key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit; comparing the first Bluetooth starting key with a second Bluetooth starting key input from outside, and starting a Bluetooth communication link after determining that the first Bluetooth starting key is the same as the second Bluetooth starting key; after sending a Bluetooth pairing request to the security authentication server, receiving a first Bluetooth pairing code returned by the security authentication server; searching a target signal matched with the first Bluetooth pairing code, and establishing a Bluetooth communication channel with target mobile equipment corresponding to the target signal; and receiving a configuration signal sent by the target mobile equipment, and carrying out parameter configuration according to the configuration signal. The safe and reliable configuration management of the hydrological remote terminal unit can be realized, and the equipment is prevented from being hijacked and the data communication is prevented from being cracked.
Drawings
Fig. 1 is a flow chart of a parameter configuration method of a hydrological remote terminal unit according to an embodiment of the present invention;
fig. 2 is a schematic diagram of a communication unit of a parameter configuration method of a hydrological remote terminal unit according to an embodiment of the present invention;
FIG. 3 is a block diagram of a hydrological remote terminal unit of a parameter configuration method of the hydrological remote terminal unit according to an embodiment of the present invention;
fig. 4 is a detailed flowchart of a parameter configuration method of a hydrological remote terminal unit according to an embodiment of the present invention;
FIG. 5 is a schematic diagram of a magnetic control sequence switch of a parameter configuration method of a hydrological remote terminal unit according to an embodiment of the present invention;
FIG. 6 is a schematic diagram of a cryptographic dictionary of a method for configuring parameters of a hydrological remote terminal unit according to an embodiment of the present invention;
fig. 7 is a schematic diagram of a data packet of a parameter configuration method of a hydrological remote terminal unit according to an embodiment of the present invention;
fig. 8 is a schematic structural diagram of a parameter configuration apparatus of a hydrological remote terminal unit according to an embodiment of the present invention.
Detailed Description
Exemplary embodiments of the present invention will be described in more detail below with reference to the accompanying drawings. While exemplary embodiments of the present invention are shown in the drawings, it should be understood that the present invention may be embodied in various forms and should not be limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the invention to those skilled in the art.
As shown in fig. 1, an embodiment of the present invention proposes a parameter configuration method of a hydrological remote terminal unit, which is applied to the hydrological remote terminal unit, and includes:
step 11, receiving a configuration request signal sent by mobile equipment;
step 12, according to the configuration request signal, sending Bluetooth start request information to a security authentication server; the bluetooth opening request information includes: the identification information, true random number key and time stamp information of the hydrological remote terminal unit;
step 13, receiving a first Bluetooth starting key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit;
step 14, comparing the first Bluetooth starting key with a second Bluetooth starting key input from outside, and starting a Bluetooth communication link after determining that the first Bluetooth starting key is the same as the second Bluetooth starting key;
step 15, after sending a Bluetooth pairing request to the security authentication server, receiving a first Bluetooth pairing code returned by the security authentication server;
step 16, searching a target signal matched with the first Bluetooth pairing code, and establishing a Bluetooth communication channel with a target mobile device corresponding to the target signal;
and step 17, receiving a configuration signal sent by the target mobile equipment, and carrying out parameter configuration according to the configuration signal.
In this embodiment, the bluetooth communication function of the hydrological remote terminal unit is turned off by default, and when the configuration request information of the mobile device is received, a bluetooth opening request is sent to the security authentication server, the server returns a bluetooth opening password and other series of operations, and finally, the bluetooth opening key is input through the outside of a staff, and the bluetooth is opened after the internal comparison of the hydrological remote terminal unit is successful. The risk of hijacking the hydrologic remote terminal unit is effectively reduced, and the safety of data acquisition is improved.
In this embodiment, the communication principle of the hydrological remote terminal unit security configuration management system corresponding to the method is shown in fig. 2, and mainly includes a hydrological remote terminal unit, a mobile device, a wireless base station, a security authentication server and a data access server.
The hydrologic remote terminal unit is provided with a wireless Bluetooth channel and is used for being in wireless connection with mobile equipment of hydrologic facility operation and maintenance personnel, such as a smart phone, and receiving configuration management signals sent by the mobile equipment. The hydrological remote terminal unit also has NB-IOT (narrowband Internet of things) and 4G/5G communication capability, and is used for communicating with the security authentication server and the data access server through a wireless communication network to request and receive security authentication configuration information such as Bluetooth starting keys, bluetooth pairing codes and the like. In this embodiment, the hydrological remote terminal unit includes a hardware encryption computing device, such as a true random number generator, for generating a true random number, and completing operations, such as bluetooth key generation, encryption, and the like, according to the true random number.
The intelligent mobile phone has Bluetooth communication capability and is used for sending configuration information to the hydrological remote terminal unit, and meanwhile has 4G/5G communication capability, and connection is established with a communication network through the base station and is used for requesting and receiving information such as Bluetooth pairing codes and the like. In this embodiment, the configuration information of the staff on the hydrological remote terminal unit mainly includes: the data sampling frequency of the configuration hydrological remote terminal unit (for example, set to collect and upload hydrological data 1 time every 10 minutes or upload data once every 30 minutes), the data message format of data upload, the server address to which the configuration data upload is accessed, and the like.
In this embodiment, the capability of the wireless base station to provide wireless cellular communication belongs to common devices of public wireless communication networks; the security authentication server provides security configuration for the hydrological remote terminal unit, receives Bluetooth starting request information sent by the hydrological remote terminal unit, and sends a Bluetooth starting key, a Bluetooth pairing key and the like to the hydrological remote terminal unit and the mobile device; the data access server provides data access service for the hydrological remote terminal unit, and the hydrological remote terminal unit accesses the data access server through wireless communication protocols such as MQTT (message queue telemetry transport), and the like, and needs to configure an IP address, a service port number, a protocol type, and the like of specified access.
In this embodiment, the device structure diagram of the hydrological remote terminal unit is shown in fig. 3, where the microprocessor and the memory are the most dominant computing and processing devices of the hydrological remote terminal unit, and are used to control the operation of the software program, and store the computing data and the computing program. The NB-IOT (narrowband Internet of things)/4G/5G wireless communication module is used for providing the capability of the hydrological remote terminal unit to connect with the wireless cellular network. The Bluetooth communication module is used for providing the capability of the hydrologic remote terminal unit to carry out wireless connection communication with the smart mobile phone, the Bluetooth communication module defaults to be in a closed state on the hydrologic remote terminal unit, when a hydrologic staff inputs a second Bluetooth opening key on a magnetic control sequence switch of the hydrologic remote terminal unit by using a magnetic control key, the input information can be sent to a microprocessor to be compared with a first Bluetooth opening key received from a security authentication server, and if the password is correct, the microprocessor sends an opening instruction to the Bluetooth communication module. If the password is incorrect, the microprocessor does not send an opening instruction to the Bluetooth communication module, and Bluetooth is still in a default closing state, so that illegal intruders cannot open Bluetooth of the hydrological remote terminal unit and cannot connect with the hydrological remote terminal unit through the Bluetooth of the smart phone.
The magnetic control sequence switch is mainly used for a worker to input a second Bluetooth starting key through a magnetic control key. The true random number generator is mainly used for generating a random number, and is used for generating a secret key according to the true random number and encrypting the secret key by the security authentication server.
In this embodiment, the detailed workflow of the security configuration of the hydrologic remote terminal unit is shown in fig. 4, where the hydrologic remote terminal unit and the smart phone respectively request the bluetooth start key from the security authentication server, the security authentication server returns the first bluetooth start key and the second bluetooth start key to the hydrologic remote terminal unit and the smart phone respectively, the staff inputs the second bluetooth start key through the magnetic control sequence switch, the microprocessor of the hydrologic remote terminal unit compares the two keys, and starts bluetooth after confirming the same. After the Bluetooth pairing of the hydrologic remote terminal unit and the smart phone is successful, the staff controls the smart phone to configure the hydrologic terminal unit.
In an optional embodiment of the present invention, the first bluetooth start key is obtained by inputting the true random number key into a hash function through a secure authentication server; and according to the hash value, inquiring at least one password sequence matched with the hash value in a preset password dictionary, and determining the matched password sequence as the first Bluetooth starting key.
In this embodiment, the hydrological remote terminal unit sends a true random number to the secure authentication server as a seed input value, performs a hash function on the seed input value on the secure authentication server to obtain a hash value, and obtains a password in a preset password dictionary of the secure authentication server through the hash value, that is, key x=hash (random_seed), where at least one password sequence is stored. The specific password acquisition code is as follows:
Public long keyHash(string random_seed)
{
Long key = 1315423;
For(int i=0; i<random_seed.len(); i++)
{
key^=((key<<5)+random_seed.charAt(i)+(key>>2));
}
Return key;
}__
in an alternative embodiment of the present invention, the byte length of the password sequence is within a first range, and the password sequence corresponds to a continuous line segment path on a magnetic control switch arranged in a lattice manner of the hydrological remote terminal unit.
In this embodiment, the preset password sequence in the password dictionary has two features, one is that a continuous line segment path can be corresponding to a magnetic control switch arranged in a dot matrix manner in the hydrological remote terminal unit, and the other is that the byte length of the password sequence is in a first range, preferably, the first range is 5 to 8 bytes long.
As shown in fig. 5, the magnetic control sequence switch outside the cavity of the hydrological remote terminal unit is a group of arrays of magnetic control switches each with a number, and the bluetooth starting key is input to the hydrological remote terminal unit by means of a magnetic pole key which is sequentially drawn on the magnetic control switch arrays. Because of this continuous input mode, the adjacent digits of the bluetooth start key must be adjacent to the magnetic control switch, that is, if the first digit of the bluetooth start key is 1, the next digit of the key can only be 2, 4 or 5 adjacent to 1, and if the second digit of the key is 4, the third digit of the key can only be 1, 2, 5, 7 or 8 adjacent to 4, that is, the magnetic pole key can only walk horizontally, vertically or obliquely by 45 degrees on the magnetic control sequence switch. Since the bluetooth key is found in at least one of the code sequences in the code dictionary, the code sequence must have the above-mentioned feature of being able to correspond to a continuous segment path on the lattice-arranged magnetic switches of the hydrological remote terminal unit, but not any group of digits. In this embodiment, a number may be repeated in the same code sequence, and the code sequence may be established as long as the line segment path defined by the sequence can be normally drawn on the cavity surface of the hydrological remote terminal unit by using the magnetic pole key. Because digits can be reused, a cryptographic sequence can theoretically be a series of digits from 1 bit to any length. In this embodiment, a 1-bit-length code is denoted as pi (1), and a code having an n-bit length is denoted as pi (n). The dictionary of the longest N number sequence is denoted as ψ (N), then ψ (N) = pi (1)/(2)/(3)/(pi (N). Because the password is too simple or the number sequence is too short, the password is tried out by an illegal invader in a way of exhausting all the number combinations before the expiration of the password timeout, in order to avoid the problem that the password is deciphered before the expiration of the password timeout, in the embodiment, the password sequence is a 5-8-bit variable-length password. I.e., ψ (5, 8) = pi (5)/(6)/(7)/(8), the cipher sequence of the cipher dictionary is shown in fig. 6.
In this embodiment, after the magnetic pole key is swiped to input the second bluetooth starting key, if an external operator uses a magnetic bar to touch the five contacts with numbers 1, 4, 5, 9 and 8 in sequence outside the cavity of the hydrological remote terminal unit, and sequentially turns on the electronic switches 1, 4, 5, 9 and 8 inside the cavity, the code generated by the sequence 1, 4, 5, 9 and 8 is sent to the microprocessor inside the hydrological remote terminal unit, and the microprocessor uses the code as a bluetooth module starting password input by the external operator, namely the second bluetooth starting key, compares the second bluetooth starting key with the first bluetooth starting key obtained from the security authentication server inside, and starts bluetooth if the code is the same as the first bluetooth starting key obtained from the security authentication server inside.
In an optional embodiment of the present invention, a first bluetooth start key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit is received, where the first bluetooth start key is a ciphertext key encrypted by the true random number key according to a preset algorithm, and the first bluetooth start key is still in a valid time range preset by the timestamp information.
It should be noted that, the bluetooth start request information sent by the hydrological remote terminal unit to the security authentication server is a data packet formed by encapsulating a true random number key read from the true random number generator, identification information of the hydrological remote terminal unit, and time stamp information. And the data message containing the first Bluetooth starting key, which is returned by the security authentication server to the hydrological remote terminal unit, also contains three information, namely a true random number key, identification information of the hydrological remote terminal unit and a time stamp.
The data message format is shown in fig. 7. The message type number is used for identifying the message type, and type=0x10 indicates that the Bluetooth is requested to start the password, and is a message sent to the security authentication server by the hydrological remote terminal unit; type=0x11 indicates that a bluetooth start password is issued, and is a message sent by the security authentication server to the hydrological remote terminal unit; type=0x03 indicates that the bluetooth pairing password is requested, and is a message sent to the security authentication server by the hydrological remote terminal unit; type=0x16 indicates that a bluetooth pairing password is issued, and is a message sent by the security authentication server to the hydrological remote terminal unit. The device ID is identification information carried by the hydrological remote terminal unit, and takes a value from 0x00000000 to 0xFFFFFFF. In the true random number field, when the hydrological remote terminal unit requests the Bluetooth key to start from the security authentication server, the true random number generated by the true random number generator is filled in. And when the security authentication server returns the first Bluetooth starting key to the hydrological remote terminal unit, the field is freely filled, meaningless, and software does not process. The time stamp information is taken from 0x0000 to 0xFFFF, and is used for limiting the timeliness of the Bluetooth starting key, after the security authentication server generates the first Bluetooth starting key according to the password dictionary, whether the time is overtime or not is judged through the time stamp information, if the time is not overtime, the key is sent, and if the time is overtime, the key is not sent. In the loaded password information, in a message of Bluetooth starting request information sent by the hydrological remote terminal unit to the security authentication server, the field is freely filled, and in a Bluetooth starting key or Bluetooth pairing code sent by the security authentication server to the hydrological remote terminal unit or the mobile device, the field fills in a ciphertext obtained by encrypting the key or the pairing code through a true random number, and a password using method is determined according to the message type number. And the CRC field is used for storing check bit information of the message.
Based on the above analysis, the bluetooth key has the following features:
1. associated with a particular hydrological remote terminal unit, one hydrological remote terminal unit has a bluetooth-enabled key, the bluetooth-enabled keys of different hydrological remote terminal units not being duplicated;
2. the Bluetooth development key has timeliness, when the Bluetooth development key is requested to a server, the Bluetooth development key is provided with timestamp information, a life cycle exists after the Bluetooth development key is acquired from a security authentication server, and after the Bluetooth development key expires, the Bluetooth development key is invalid and the Bluetooth development key needs to be reapplied to acquire an updated opening key;
3. the Bluetooth unlocking key is associated with a true random number generated by the hydrological remote terminal unit, and each time the security authentication server issues the Bluetooth unlocking key to the hydrological remote terminal unit, the security authentication server issues different Bluetooth unlocking keys according to the true random number reported by the hydrological remote terminal unit.
In an optional embodiment of the present invention, the second bluetooth opening key is obtained by sending, by the mobile device, key acquisition request information to the security authentication server, and then returning, by the security authentication server, the second bluetooth opening key corresponding to the request information; the key acquisition request information contains identification information of the hydrological remote terminal unit.
As shown in steps 3 and 4 in fig. 4, after the security authentication server returns the first bluetooth opening key to the hydrological remote terminal unit, the smart phone automatically sends key acquisition request information to the security authentication server after reading the identification information of the hydrological remote terminal unit through system setting, and the security authentication server returns a second bluetooth opening key corresponding to the identification information to the smart phone.
In an alternative embodiment of the present invention, the second bluetooth key is input to the hydrological remote terminal unit in a manner that a magnetic bar inputs a continuous line segment path on a lattice type magnetic control sequence switch.
In this embodiment, as shown in step 5 in fig. 4, the staff continuously draws the second bluetooth starting key on the dot matrix magnetic control sequence switch according to the second bluetooth starting key received by the smart phone, and inputs the second bluetooth starting key to the hydrological remote terminal unit.
In an alternative embodiment of the present invention, step 16 may include:
step 161, receiving a signal carrying second bluetooth pairing code information sent by the mobile device, determining the signal carrying the second bluetooth pairing code information as a target signal after confirming that the first bluetooth pairing code is the same as the second bluetooth pairing code, and establishing connection with a target mobile device corresponding to the target signal; the second Bluetooth pairing code is obtained by sending a message carrying the second Bluetooth pairing code to the mobile equipment requesting configuration through the security authentication server.
In this embodiment, as shown in step 9 in fig. 4, a connection is established with the smart phone requesting configuration by comparing the bluetooth pairing codes. And the intelligent mobile phone performs configuration management on the hydrologic remote terminal unit, sets an access address of the data access server, and initiates communication to the data access server according to the configuration information to complete data access configuration.
The complete workflow of the above embodiment is summarized below in connection with fig. 4:
1. after receiving a request configuration signal sent by a worker in a preset mode, the hydrological remote terminal unit inputs a certain number sequence on a magnetic control sequence switch if a magnetic pole key, and sends Bluetooth starting request information to a security authentication server, wherein the Bluetooth starting request information comprises equipment identification information, a time stamp and a true random number key;
2. the security authentication server takes the true random number as a seed, inquires a first Bluetooth starting key in a password dictionary, encrypts the first Bluetooth starting key through the true random number key after judging that the first Bluetooth starting key is not invalid, and sends the encrypted first Bluetooth starting key to a hydrological remote terminal unit corresponding to the identification information in a ciphertext mode;
3. the smart phone also requests a Bluetooth starting key from the security authentication server and simultaneously sends equipment identification information requesting configuration;
4. the security authentication server returns a second Bluetooth starting key to the smart phone;
5. the staff swipes a magnetic pole key on the magnetic control sequence switch to input a second Bluetooth starting key, the hydrological remote terminal unit compares the second Bluetooth starting key with the first Bluetooth starting key returned by the received security authentication server, and Bluetooth is started after successful comparison;
6. the hydrological remote terminal unit requests a Bluetooth pairing code from the security authentication server and simultaneously sends a second true random number newly generated by the true random number generator;
7. the security authentication server returns ciphertext data after encrypting the first Bluetooth pairing code through the second true random number;
8. the security authentication server simultaneously returns a second Bluetooth pairing code to the smart phone requesting configuration;
9. the hydrological remote terminal unit and the smart phone complete pairing, and a Bluetooth communication channel is established;
10. the intelligent mobile phone carries out configuration management on the hydrological remote terminal unit;
11. and the hydrological remote terminal unit establishes connection with the data access server according to the configuration information.
The above-described embodiments of the present invention promote the security configuration level of a hydrological remote terminal unit at least from the following aspects:
1. the Bluetooth pairing serial number is issued to the hydrological remote terminal unit and the smart phone of the operator through the security authentication server;
2. starting Bluetooth wireless of the hydrological remote terminal unit through the programmable magnetic control sequence device;
3. the Bluetooth pairing code adopts true random number encryption for transmission;
4. splitting the Bluetooth starting and Bluetooth pairing actions into two different operation steps, adopting different passwords, and issuing to different equipment entities through a security authentication server;
5. the hydrological remote terminal unit, the security authentication server and the network access server are separated, and an independent security authentication server is arranged to be responsible for distributing security passwords.
As shown in fig. 8, the present invention further provides a parameter configuration apparatus 80 of a hydrological remote terminal unit, including:
a transmitting module 81 for receiving a configuration request signal transmitted by the mobile device; according to the configuration request signal, bluetooth start request information is sent to a security authentication server; the bluetooth opening request information includes: the identification information, true random number key and time stamp information of the hydrological remote terminal unit;
a configuration module 82, configured to receive a first bluetooth start key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit; comparing the first Bluetooth starting key with a second Bluetooth starting key input from outside, and starting a Bluetooth communication link after determining that the first Bluetooth starting key is the same as the second Bluetooth starting key; after sending a Bluetooth pairing request to the security authentication server, receiving a first Bluetooth pairing code returned by the security authentication server; searching a target signal matched with the first Bluetooth pairing code, and establishing a Bluetooth communication channel with target mobile equipment corresponding to the target signal; and receiving a configuration signal sent by the target mobile equipment, and carrying out parameter configuration according to the configuration signal.
Optionally, the first bluetooth starting key inputs the true random number key into a hash function through a security authentication server to obtain a hash value; and according to the hash value, inquiring at least one password sequence matched with the hash value in a preset password dictionary, and determining the matched password sequence as the first Bluetooth starting key.
Optionally, the byte length of the password sequence is within a first range, and the password sequence corresponds to a continuous line segment path on the magnetic switches arranged in a dot matrix manner of the hydrological remote terminal unit.
Optionally, a first bluetooth opening key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit is received, wherein the first bluetooth opening key is a ciphertext key encrypted by the true random number key according to a preset algorithm, and the first bluetooth opening key is still in an effective time range preset by the timestamp information.
Optionally, the second bluetooth opening key is obtained by sending key obtaining request information to the security authentication server through the mobile device, and then returning the second bluetooth opening key corresponding to the request information by the security authentication server; the key acquisition request information contains identification information of the hydrological remote terminal unit.
Optionally, the second bluetooth key is input to the hydrological remote terminal unit in a manner that a magnetic bar inputs a continuous line segment path on a lattice type magnetic control sequence switch.
Optionally, searching for a target signal matched with the first bluetooth pairing code, and establishing a bluetooth communication channel with a target mobile device corresponding to the target signal, including:
receiving a signal carrying second Bluetooth pairing code information sent by the mobile equipment, determining the signal carrying the second Bluetooth pairing code information as a target signal after confirming that the first Bluetooth pairing code is the same as the second Bluetooth pairing code, and establishing connection with target mobile equipment corresponding to the target signal;
the second Bluetooth pairing code is obtained by sending a message carrying the second Bluetooth pairing code to the mobile equipment requesting configuration through the security authentication server.
It should be noted that, the device is a device corresponding to the above method, and all implementation manners in the above method embodiments are applicable to the embodiment of the device, so that the same technical effects can be achieved.
Embodiments of the present invention also provide a computing device comprising: a processor, a memory storing a computer program which, when executed by the processor, performs the method as described above. All the implementation manners in the method embodiment are applicable to the embodiment, and the same technical effect can be achieved.
Embodiments of the present invention also provide a computer-readable storage medium storing instructions that, when executed on a computer, cause the computer to perform a method as described above. All the implementation manners in the method embodiment are applicable to the embodiment, and the same technical effect can be achieved.
Those of ordinary skill in the art will appreciate that the various illustrative elements and algorithm steps described in connection with the embodiments disclosed herein may be implemented as electronic hardware, or combinations of computer software and electronic hardware. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the solution. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
It will be clear to those skilled in the art that, for convenience and brevity of description, specific working procedures of the above-described systems, apparatuses and units may refer to corresponding procedures in the foregoing method embodiments, and are not repeated herein.
In the embodiments provided in the present invention, it should be understood that the disclosed apparatus and method may be implemented in other manners. For example, the apparatus embodiments described above are merely illustrative, e.g., the division of the units is merely a logical function division, and there may be additional divisions when actually implemented, e.g., multiple units or components may be combined or integrated into another system, or some features may be omitted or not performed. Alternatively, the coupling or direct coupling or communication connection shown or discussed with each other may be an indirect coupling or communication connection via some interfaces, devices or units, which may be in electrical, mechanical or other form.
The units described as separate units may or may not be physically separate, and units shown as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
In addition, each functional unit in the embodiments of the present invention may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit.
The functions, if implemented in the form of software functional units and sold or used as a stand-alone product, may be stored in a computer-readable storage medium. Based on this understanding, the technical solution of the present invention may be embodied essentially or in a part contributing to the prior art or in a part of the technical solution, in the form of a software product stored in a storage medium, comprising several instructions for causing a computer device (which may be a personal computer, a server, a network device, etc.) to perform all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a usb disk, a removable hard disk, a ROM, a RAM, a magnetic disk, or an optical disk, etc.
Furthermore, it should be noted that in the apparatus and method of the present invention, it is apparent that the components or steps may be disassembled and/or assembled. Such decomposition and/or recombination should be considered as equivalent aspects of the present invention. Also, the steps of performing the series of processes described above may naturally be performed in chronological order in the order of description, but are not necessarily performed in chronological order, and some steps may be performed in parallel or independently of each other. It will be appreciated by those of ordinary skill in the art that all or any of the steps or components of the methods and apparatus of the present invention may be implemented in hardware, firmware, software, or a combination thereof in any computing device (including processors, storage media, etc.) or network of computing devices, as would be apparent to one of ordinary skill in the art after reading this description of the invention.
The object of the invention can thus also be achieved by running a program or a set of programs on any computing device. The computing device may be a well-known general purpose device. The object of the invention can thus also be achieved by merely providing a program product containing program code for implementing said method or apparatus. That is, such a program product also constitutes the present invention, and a storage medium storing such a program product also constitutes the present invention. It is apparent that the storage medium may be any known storage medium or any storage medium developed in the future. It should also be noted that in the apparatus and method of the present invention, it is apparent that the components or steps may be disassembled and/or assembled. Such decomposition and/or recombination should be considered as equivalent aspects of the present invention. The steps of executing the series of processes may naturally be executed in chronological order in the order described, but are not necessarily executed in chronological order. Some steps may be performed in parallel or independently of each other.
While the foregoing is directed to the preferred embodiments of the present invention, it will be appreciated by those skilled in the art that various modifications and adaptations can be made without departing from the principles of the present invention, and such modifications and adaptations are intended to be comprehended within the scope of the present invention.
Claims (10)
1. A method for configuring parameters of a hydrological remote terminal unit, which is applied to the hydrological remote terminal unit, comprising:
receiving a configuration request signal sent by mobile equipment;
according to the configuration request signal, bluetooth start request information is sent to a security authentication server; the bluetooth opening request information includes: the identification information, true random number key and time stamp information of the hydrological remote terminal unit;
receiving a first Bluetooth starting key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit;
comparing the first Bluetooth starting key with a second Bluetooth starting key input from outside, and starting a Bluetooth communication link after determining that the first Bluetooth starting key is the same as the second Bluetooth starting key;
after sending a Bluetooth pairing request to the security authentication server, receiving a first Bluetooth pairing code returned by the security authentication server;
searching a target signal matched with the first Bluetooth pairing code, and establishing a Bluetooth communication channel with target mobile equipment corresponding to the target signal;
and receiving a configuration signal sent by the target mobile equipment, and carrying out parameter configuration according to the configuration signal.
2. The method for configuring parameters of a hydrological remote terminal unit according to claim 1, wherein the first bluetooth start key is obtained by inputting the true random number key into a hash function through a secure authentication server; and according to the hash value, inquiring at least one password sequence matched with the hash value in a preset password dictionary, and determining the matched password sequence as the first Bluetooth starting key.
3. The method of claim 2, wherein the byte length of the code sequence is within a first range, and the code sequence corresponds to a continuous line segment path on a magnetic control switch arranged in a lattice of the hydrologic remote terminal unit.
4. The method for configuring parameters of a hydrological remote terminal unit according to claim 1, wherein a first bluetooth start key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit is received, wherein the first bluetooth start key is a ciphertext key encrypted by the true random number key according to a preset algorithm, and the first bluetooth start key is still in a valid time range preset by the timestamp information.
5. The method for configuring parameters of a hydrological remote terminal unit according to claim 1, wherein the second bluetooth enabling key is obtained by sending key acquisition request information to a security authentication server by a mobile device, and then returning the second bluetooth enabling key corresponding to the request information by the security authentication server; the key acquisition request information contains identification information of the hydrological remote terminal unit.
6. The method for configuring parameters of a hydrological remote terminal unit according to claim 1, wherein the second bluetooth key is input to the hydrological remote terminal unit in such a manner that a magnetic bar inputs a continuous line segment path on a lattice type magnetic control sequence switch.
7. The method for configuring parameters of a hydrological remote terminal unit according to claim 1, wherein searching for a target signal matched with the first bluetooth pairing code and establishing a bluetooth communication channel with a target mobile device corresponding to the target signal comprises:
receiving a signal carrying second Bluetooth pairing code information sent by the mobile equipment, determining the signal carrying the second Bluetooth pairing code information as a target signal after confirming that the first Bluetooth pairing code is the same as the second Bluetooth pairing code, and establishing connection with target mobile equipment corresponding to the target signal;
the second Bluetooth pairing code is obtained by sending a message carrying the second Bluetooth pairing code to the mobile equipment requesting configuration through the security authentication server.
8. A parameter configuration apparatus for a hydrological remote terminal unit, comprising:
the sending module is used for receiving a configuration request signal sent by the mobile equipment; according to the configuration request signal, bluetooth start request information is sent to a security authentication server; the bluetooth opening request information includes: the identification information, true random number key and time stamp information of the hydrological remote terminal unit;
the configuration module is used for receiving a first Bluetooth starting key returned by the security authentication server according to the identification information, the true random number key and the timestamp information of the hydrological remote terminal unit; comparing the first Bluetooth starting key with a second Bluetooth starting key input from outside, and starting a Bluetooth communication link after determining that the first Bluetooth starting key is the same as the second Bluetooth starting key; after sending a Bluetooth pairing request to the security authentication server, receiving a first Bluetooth pairing code returned by the security authentication server; searching a target signal matched with the first Bluetooth pairing code, and establishing a Bluetooth communication channel with target mobile equipment corresponding to the target signal; and receiving a configuration signal sent by the target mobile equipment, and carrying out parameter configuration according to the configuration signal.
9. A computing device, comprising: a processor, a memory storing a computer program which, when executed by the processor, performs the method of any one of claims 1 to 7.
10. A computer readable storage medium storing instructions which, when run on a computer, cause the computer to perform the method of any one of claims 1 to 7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202310679223.4A CN116437353B (en) | 2023-06-09 | 2023-06-09 | Parameter configuration method, device and equipment of hydrological remote terminal unit |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202310679223.4A CN116437353B (en) | 2023-06-09 | 2023-06-09 | Parameter configuration method, device and equipment of hydrological remote terminal unit |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN116437353A CN116437353A (en) | 2023-07-14 |
| CN116437353B true CN116437353B (en) | 2023-08-11 |
Family
ID=87091048
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202310679223.4A Active CN116437353B (en) | 2023-06-09 | 2023-06-09 | Parameter configuration method, device and equipment of hydrological remote terminal unit |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN116437353B (en) |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103292793A (en) * | 2013-05-30 | 2013-09-11 | 成都众山科技有限公司 | Multifunctional telemetering terminal with hydrological telemetering |
| WO2015110079A1 (en) * | 2014-01-27 | 2015-07-30 | 青岛雅合阴保工程技术有限公司 | Method and communication system for conducting communication by using submarine pipelines |
| CN105783886A (en) * | 2016-03-23 | 2016-07-20 | 林丽芳 | Wind-power hydrology telemetering and remote sensing terminal equipment |
| KR20180020491A (en) * | 2016-08-18 | 2018-02-28 | (주)참정보기술 | Remote terminal unit and water level monitoring system including the same |
| CN218545766U (en) * | 2022-07-22 | 2023-02-28 | 成都云智北斗科技有限公司 | Water conservancy information monitoring system |
-
2023
- 2023-06-09 CN CN202310679223.4A patent/CN116437353B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103292793A (en) * | 2013-05-30 | 2013-09-11 | 成都众山科技有限公司 | Multifunctional telemetering terminal with hydrological telemetering |
| WO2015110079A1 (en) * | 2014-01-27 | 2015-07-30 | 青岛雅合阴保工程技术有限公司 | Method and communication system for conducting communication by using submarine pipelines |
| CN105783886A (en) * | 2016-03-23 | 2016-07-20 | 林丽芳 | Wind-power hydrology telemetering and remote sensing terminal equipment |
| KR20180020491A (en) * | 2016-08-18 | 2018-02-28 | (주)참정보기술 | Remote terminal unit and water level monitoring system including the same |
| CN218545766U (en) * | 2022-07-22 | 2023-02-28 | 成都云智北斗科技有限公司 | Water conservancy information monitoring system |
Non-Patent Citations (1)
| Title |
|---|
| 基于蓝牙通信的流速流向采集系统设计;崔东鹏等;山东水利;全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN116437353A (en) | 2023-07-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109903433B (en) | Access control system and access control method based on face recognition | |
| CN111080845B (en) | Temporary unlocking method, system, door lock, administrator terminal and readable storage medium | |
| CN111435913B (en) | Identity authentication method and device for terminal of Internet of things and storage medium | |
| US8548429B2 (en) | Cellular device security apparatus and method | |
| CN108173822A (en) | Intelligent door lock management-control method, intelligent door lock and computer readable storage medium | |
| CN104167029B (en) | A kind of intelligent lock and its operating method | |
| US20070257813A1 (en) | Secure network bootstrap of devices in an automatic meter reading network | |
| CN202003425U (en) | Central management system for monitoring intelligent lock | |
| CN106789047A (en) | A kind of block chain identification system | |
| CN106340104B (en) | A kind of coded lock, coded lock control system and method | |
| CN103544746A (en) | Electronic access control system of dynamic bar code | |
| WO2006042469A1 (en) | A dynamic password authentication system and the method thereof | |
| CN107893583A (en) | A kind of intelligent door lock system and control method | |
| CN107989514A (en) | There is the safety box of dynamic password | |
| CN104052817A (en) | Intelligent door and intelligent door control method and system | |
| CN109714760A (en) | A kind of right access control method suitable for smart machine under direct-connected communication environment | |
| CN103152326A (en) | Distributed authentication method and authentication system | |
| CN107104792B (en) | Portable mobile password management system and management method thereof | |
| CN116437353B (en) | Parameter configuration method, device and equipment of hydrological remote terminal unit | |
| CN210038899U (en) | Intelligent lock | |
| CN111563980B (en) | Bluetooth lock key generation and authentication method | |
| CN111489462B (en) | Personal Bluetooth key system | |
| CN112039654A (en) | Electric meter data security acquisition method for resisting man-in-the-middle attack | |
| CN116318675A (en) | Dynamic password generation method, system, device, computer equipment and medium | |
| CN110047181B (en) | Intelligent door lock safety control method based on Zigbee |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |