CN1481112A - Service renting and authorizing method for realizing resource sharing in household network - Google Patents
Service renting and authorizing method for realizing resource sharing in household network Download PDFInfo
- Publication number
- CN1481112A CN1481112A CNA021295328A CN02129532A CN1481112A CN 1481112 A CN1481112 A CN 1481112A CN A021295328 A CNA021295328 A CN A021295328A CN 02129532 A CN02129532 A CN 02129532A CN 1481112 A CN1481112 A CN 1481112A
- Authority
- CN
- China
- Prior art keywords
- service
- renting
- equipment
- sharing
- home network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
When resource manager exists in network, service use device sends request message of applying authorization to resource manager to begin authorization apply. Resource manager sends response message of authorization apply with result applied to the service use device. The service use device sends request message of renting service to the service supply device to begin procedure of renting service. When resource manager does not exist in network, the service use device with peer-to-peer connection being built sends request message of renting service to the service supply device to begin procedure of renting service. Procedure of renting service is that based on existing state of requested renting service currently, the service supply device makes response whether renting is agreed or not. If yes, the service use device can use service provided by the service supply device within renting period. The invention also protects data security and privacy effectively in period of using device.
Description
Technical field
The present invention relates to a kind of computer networking technology, when relating to or rather carry out dynamic group net, resource-sharing in the home network, for realizing using practiced a kind of service renting and authorization method in the home-ranges between various device safely mutually.
Background technology
Along with the fast development of computer technology and network technology and individual to family life digitlization, informationalized pursuit, (associated also has home network E-Home: Smart Home Smart Home, electronic family Electronic Home, e-Home, digital home Digital Family, network home Network Home, the intelligent Intelligent Home of family etc.), developed into a current hot technology.Home network technologies is to realize the digitized guardian technique of household equipment, and this technology has been arranged, and just all electric equipments in the family can be connected into an integral body, realizes devices interconnect and information transmission anywhere or anytime.
The demand of home network is different from commercial network fully, as do not need extra wiring install, use simple, cost is low etc.The interconnected network technology of existing suitable household equipment as HomePNA, can utilize each family's existing telephone line to realize the interconnection of digital device, and is simple and practical, and do not influence normally answering of phone.Utilize the power line networking, transmission signals and data on the power line of having laid within the family also can realize household appliances automation control easily.
Fig. 1 illustrates a kind of network system topological structure of digital home, comprises backbone network and two levels of control subnet.Family's backbone network comprises on the networking form in wired mode and inserts and insert two kinds (in order to realize the interconnection of some wireless mobile apparatus with wireless mode, allow the user can enjoy message reference anywhere or anytime to the full, the wireless trunk net is a part indispensable in family's backbone network).In backbone network; usually have one family server 101; it is the processing center and the storage center of digital home; can be PC equipment or private server; door gateway 102 in the backbone network is used to realize the broadband access of the interconnected and family of household internal equipment 104 (comprising mobile device 103), the information that the equipment 103,104 in family's backbone network can be shared from internet 105.Family's backbone network has been constructed the information/multi-media network of family, realizes the interconnected of information equipment, communication apparatus, amusement equipment etc.The key data of family's backbone network transmission is literal, picture, audio frequency, video etc.
The control subnet is used to realize the interconnected of equipment (108) such as household electrical appliance, automation equipment, security personnel's (monitoring) device, and its establishment is the important prerequisite that realizes home automation.If the data owner that transmits in the control subnet is to the various control commands of equipment and the status data of equipment.Control gateway 106 in the control subnet realizes the interconnected of all kinds of home equipments 108 on the one hand, realize the interconnected of control subnet and backbone network on the other hand, provide external interface to remote phone warning and telephone remote control (utilizing public switched telephone network PSTN 107) simultaneously.
Mutual minute two layers of meaning between family's backbone network and the Internet 105: the one, the user can be in long-range service of calling by Internet on family's backbone network; The 2nd, the user passes through the service on the backbone network visit Internet of family.
The mutual control gateway 106 of passing through between family's backbone network and the home automation control network realizes.Control gateway 106 is responsible for carrying out the protocol conversion between backbone network and control subnet, makes service in the control subnet show as service in family's backbone network, will be the operation to related service on the control gateway 106 to the operational transition of equipment and service in the control subnet.In the control Subnetwork protocol, the description of service is based on all that WSDL carries out.The service of control in the subnet generates corresponding WSDL by control gateway 106 and describes, and as the backbone network service registry on control gateway 106.
In order the domestic consumer can indiscriminately ad. as one wishes be recreated enjoy and the life staying idle at home of safety and comfort, must allow the electric equipment of the numerous numerous and complicated in the family can organic interconnected and collaborative work, thereby in family's network system backbone network, rationally effectively realize the method (backbone network protocol) of equipment room dynamic group net and resource-sharing by designing a cover, realize high rate data transmission, high-quality service, dynamic group net and the effectively resource-sharing of family's backbone network.
Involved in the present invention in family's network range, support the dynamic group net between various device in the family, the equipment in the network that is meant need not to carry out the network parameter configuration by manual mode in advance, just can dynamically from network, select relevant device to form the one family network, be used to the function that realizes that any single equipment can't be finished, or improve the performance of the former function of arbitrary single equipment; Resource-sharing is meant that the equipment in the network can be provided by the resource that self provides, the resource that also can retrieve and utilize miscellaneous equipment to provide easily simultaneously, and any two equipment rooms are by the function of direct communication and resource-sharing expansion single equipment.
A kind of method that realizes equipment room dynamic group net and resource-sharing in family's backbone network is arranged, may further comprise the steps:
A. family's backbone network equipment is connected local area network (LAN) or wireless local is online;
B. equipment is declared this facility information in the multicast mode by the issue announcement message;
C. equipment is by intercepting or the mode of searching obtains the message that exists of miscellaneous equipment;
D. serve use equipment or service providing device by on an asset management device, registering, constitute the one family network with asset management device; Or more than one service uses equipment or service providing device to constitute the one family network by reciprocity connected mode;
E. the service use equipment that adds home network is by initiating the service search request to asset management device, obtain the information on services of service providing device in the home network, by initiating service renting request and service invocation request, obtain the right of using service and use the service that service providing device provided to service providing device; Perhaps serve use equipment by initiating service search request, service renting request and service invocation request, obtain the information on services of this service providing device, the right of using service and the use service that service providing device provided to the service providing device that establishes reciprocity annexation with it.
In fact service renting in the technique scheme in the step e is exactly the service renting method when realizing dynamic group net, resource-sharing in family's backbone network to be solved by this invention.
In family's backbone network, realize dynamic group net, resource-sharing, will consider to be user-friendly on the one hand, also will fully take into account the privacy of equipment and data simultaneously.Like having entered the guest in the family,, some equipment in the family and some services can be offered guest's use, but all equipment all might not be opened to the guest, and owner can not offer the guest with all services yet for showing friendship.This is provided with problem with regard to the user right that relates to the guest and the level of security of household equipment and service, and in other words, equipment that level of security is high and service are also high to the requirement of user right, and equipment that level of security is low and service are also low to the requirement of user right.For addressing the above problem, the present invention has introduced renting and licensing scheme of service in home network.
Summary of the invention
The objective of the invention is to design service renting and authorization method when realizing resource-sharing in a kind of home network, with safety of data on the various device in the effective protection home network and privacy.
Method of the present invention is: the user that requirement enters home network, before the service of other equipment of use, need rent earlier, and rent successfully and just can rent this service of use in the time limit; With rent before need carry out authorization of service earlier, have only when the user has authority and use this service the time just can according to circumstances determine whether to agree renting of user.
The backbone network member of family that the inventive method is involved, comprise information equipment, communication apparatus and amusement equipment etc., mode by protocol gateway, can also and some domestic electric appliances, carry out alternately as refrigerator, washing machine, television set, sound equipment etc., so the carrier that provides or accept to serve of the equipment in the inventive method.
The service that the inventive method is involved is meant the functional entity that satisfies the defined standard interface of backbone network protocol on the equipment of operating in.
The involved asset management device of the inventive method is meant that the equipment that can provide in the network registers and serve the equipment of index function.
The service providing device that the inventive method is involved is meant the equipment that service is provided for the miscellaneous equipment in the network.
The involved service use equipment of the inventive method is meant the equipment that uses the service that miscellaneous equipment provided in the network.
The involved multicast of the inventive method is meant that a transmitting apparatus sends information to a specific group of received equipment; The involved clean culture of the inventive method is meant that a transmitting apparatus sends information to the receiving equipment of an appointment.
The technical scheme that realizes the object of the invention is such: service renting and authorization method when realizing resource-sharing in a kind of home network is characterized in that comprising:
A. when having asset management device in the network, in authorizing, the asset management device transmission asks request message by service use equipment, the beginning authorized application; Asset management device sends the authorized application response message that has the authorized application result to service use equipment; Service use equipment sends the service renting request message to service providing device, beginning service renting process; Continuous again execution in step c and d;
B. when not having asset management device in the network, use equipment to send the service renting request message, begin the process of renting to service providing device by the service of setting up good equity connection; Continuous again execution in step c and d;
C. the service providing device that receives the service renting request message is made according to the current virtual condition that is requested rental service and being agreed or dissenting renting replied;
D. obtain agreeing to rent the service of replying and use equipment, use the service that service providing device provided.
The process that cancellation is rented is: send the cancellation lease message by service use equipment to service providing device.
The present invention is divided into two processes with whole service renting process: authorized application process and rent application process.For destination service object security attribute is the service of private (PRIVATE), need verify the certificate of authority when renting, and for the destination service of destination service object security attribute for open (OPEN), then need not to verify the certificate of authority when renting.The purpose of authorized application process is to obtain use authority.
In family's network backbone net, when having asset management device, add any one the service use equipment in the home network backbone network, all can send service authorization request to asset management device, after asset management device is received this service authorization request, judge whether that according to the delegated strategy that self is provided with can serve use equipment to this authorizes, and the result and the certificate of authority sent to this service use equipment, service use equipment can initiate rent application process to the equipment at destination service place after obtaining use authority to destination service.
When not having asset management device in family's network backbone net, service use equipment uses the empty certificate of authority to initiate to rent application process to the equipment at destination service place.
Therefore the process of renting begins by sending the service renting request message to service providing device with service use equipment, and the service renting request message can transmit by transmission control protocol (TCP).
After service providing device is received the service renting request message, for renting the service renting request that security attribute is a private (PRVIATE), if the home network of primary and secondary structure, check authorization message earlier, if authorization message is credible, then make and agreeing or dissenting renting replied, and will comprise the lease request response message of renting result and send to the use equipment of serving according to the current virtual condition that is requested rental service; If the home network of reciprocity interconnection system structure, security strategy setting according to self decides the requesting party whether rights of using are arranged, if allow the requesting party to use, make according to the current virtual condition that is requested rental service again and agreeing or dissenting renting replied, and will comprise the lease request response message of renting result and send to the use equipment of serving.
After service providing device is received the service renting request message, for renting the service renting request of security attribute for open (OPEN), make according to the current virtual condition that is requested rental service and to agree or dissenting renting replied, and will comprise the lease request response message of renting result and send to the use equipment of serving.
When service object that service use equipment no longer needs to have rented, can initiate cancellation to service providing device and rent process, send the message that cancellation is rented to service providing device, comprise the certificate of authority in the message that cancellation is rented, the certificate content is identical with certificate content in the service renting request message, and service providing device carries out similarly handling with the service renting request message after receiving the cancellation lease message, only under the situation that service providing device allows, just can cancel and renting.After renting and finish, cancellation do not need to send response to service use equipment.
Adopt method of the present invention, the service in the home network has only through renting just and can being used, and has protected safety of data and privacy effectively.Since rent with licensing process be transparent for the user, thereby can not increase trouble to the user, make troubles.
Description of drawings
Fig. 1 is a kind of topology diagram of digital home network system;
Fig. 2 is the master-slave mode home network architecture sketch when asset management device is arranged;
Reciprocity interconnection system home network architecture sketch when Fig. 3 is the No Assets management equipment;
Fig. 4 is service renting and the authorization flow figure in master-slave mode home network when asset management device is arranged.
Embodiment
The core concept of home network is dynamically to realize the interconnecting of equipment, resource-sharing.Equipment is implemented unified centralized management more help resource-sharing between the equipment, asset management device is exactly a kind of equipment that home network equipment is managed concentratedly of being used for.
Home network when having asset management device can be reduced to principal and subordinate's connected mode structure shown in Figure 2.
Referring to Fig. 2, the electric equipment in the family constitutes the information equipment that comprises that an asset management device 21 is many with possibility, information equipment 1 (22) as shown in FIG., information equipment 2 (23) and information equipment 3 (24).Information equipment can be service providing device and the general name of serving use equipment, and they are non-asset management devices.
Wherein, asset management device can be specified by the domestic consumer, adds a software on asset management device and all equipment that need manage, realizes various functions by this software mutual communication on each equipment.
All devices resource in the asset management device managing family network, the user can unify centralized management to all equipment by asset management device, and as the equipment retrieval, equipment adds control, equipment control of authority etc.
Non-resource management equipment in the family is obtained central controlled some authority by self is registered on the asset management device (facility information and information on services), as retrieval, visits resource on other equipment etc.
But, be not in all home network environments, all can there be a fixing asset management device, in the home network environment that does not have asset management device, then, realize simple equipment control by the reciprocity connection mechanism between the peer device.
Home network architecture shown in Figure 1 can be reduced to equipment equity connected mode structure shown in Figure 3.
Referring to Fig. 3, during constituting, household appliances equipment comprises the information equipment of a plurality of equities, peer device 1 (31) as shown in FIG., peer device 2 (32), peer device 3 (33) and peer device 4 (34).Peer device can be service providing device and the general name of serving use equipment.There is not asset management device in the home network that equity connects.
When carrying out the peer device connection, there is one to connect initiating equipment and a linking objective equipment.Wherein, linking objective equipment is specified by connecting initiating equipment, all needs to add a software on these two equipment, realizes that by mutual communication equity connects by this software on each equipment.
Before equipment connects, there is a device discovery procedure, device discovery procedure occurs in and connects between initiating equipment and the linking objective equipment, connects initiating equipment and finds linking objective equipment earlier by device discovery procedure, and then could begin the equipment connection procedure.Comprise: equipment declaration and equipment are searched two kinds of processes.By this equipment declaration and equipment finding step, all devices in the home network just can be found the other side's existence mutually.
Service renting of the present invention and service authorizing method are embodied in the service access process, and service access should comprise: service discovery, authorization of service and three processes of service renting (may be embodied on three agreements).
When having asset management device in the network, the service that adds home network uses equipment to initiate the service renting process to asset management device, to rent needed service.
When not having asset management device in the network, service use equipment can be initiated the service renting process to service providing device with after service providing device is created reciprocity the connection, provides service on the equipment with rental service.
Service use equipment begins the process of renting by sending the service renting request message to service providing device.The service renting request message format that the embodiment of the invention adopted is as follows:
<schema xmlns=“http://www.w3.org/2001/XMLSchema” xmlns:leh=“http://www.legend.com/EHome” targetNamespace=“http://www.legend.com/EHome”> <element name=“ServiceRentRequest” type=“leh:ServiceRentRequestType”> <complexType name=“RentRequestType”> <sequence> <element name=“DestinationDeviceID”> <simpleType> <restriction base=“string”> <pattern value=“0x[0-9]{32}”> </restriction> <!-- SIPO <DP n="8"> --> <dp n="d8"/> </simpleType> </element> <element name=”DestinationServiceID” type=”unsignedInt”> <element name=”RentType”> <simpleType> <restriction base=”string”> <enumeration value=”RENT”> <enumeration value=”RENT_COMPLETE”> </restriction> </simpleType> </element> <element name=”RentTime” type=”integer” minOccurs=”0”> <element name=”Authority” type=”string” minOccurs=”0”> </sequence> </complexType> </schema>
The service renting request message mainly comprises following several element:
Target device ID (DestinationDeviceID): the device identification at destination service place.
Destination service ID (DestinationServiceID): the service identifiers of destination service.
Service renting authorization message (Authority): authorization message.。
Rental period (RentTime): the time that expectation is rented is unit with the second.
Rent type (RentType): comprise and rent (RENT) or (RENTCOMPLETE) rented in cancellation.
Below with tabulating the corresponding relation between each field name and its content and value in the service renting request message:
| Field name | Content | Value |
| License the time period | Authorize the time period that allows service to use | 32 signless integers |
| The source service ID | Service user's | 32 signless integers |
| Source device ID | Service user's device identification | 128 signless integers |
| Destination service ID | Service provider's | 32 signless integers |
| Target device ID | Service provider's device identification | 128 signless integers |
| Authorisation device ID | The device identification of the certificate of authority is provided | 128 signless integers |
| Authorize zero-time | The time that mandate can be brought into | 32 signless integers |
| The certificate of authority after the encryption | Be used to verify the digital certificate of user right | Character string |
| Certificate of authority length after the encryption | The length of the certificate of | 32 signless integers |
| Rental period | The time that expectation is rented is unit with the second | 32 signless integers |
| Rent type | Show that this message is to rent or remove and rent | RENT: rent RENTCOMPLETE: cancellation is rented |
The service renting request message transmits by TCP, shares key if exist between service use equipment and the service providing device, then adopts this key to realize encrypted transmission based on TLS.
After service providing device is received the service renting request message, for renting the lease request that security attribute is the service of private (PRVIATE), check authorization message earlier, if authorization message is credible, then makes and agreeing or dissenting renting replied according to the current virtual condition that is requested rental service.Send to service use equipment and finish the service renting request process by comprising the response message of renting of renting result.
The service renting response message format that the embodiment of the invention adopted is as follows:
<schema xmlns=“http://www.w3.org/2001/XMLSchema” xmlns:leh=“http://www.legend.com/EHome” targetNamespace=“http://www.legend.com/EHome”> <element name=”ServiceRentResponse” type=“leh:ServiceRentResponseType”> <complexType name=”ServiceRentResponseType”> <sequence> <element name=”RentResult”> <simpleType> <restriction base=”string”> <enumeration value=”ACCESSDENIED”> <enumeration value=”SERVICENOTFOUND”> <!-- SIPO <DP n="10"> --> <dp n="d10"/> <enumeration value=”SERVICENOTRENTED”> <enumeration value=”SERVICEBUSY”> <enumeration value=”SUCCESS”> </restriction> </simpleType> </element> <element name=”RentTime”type=”integer”minOccurs=”0”> </sequence> </complexType> </schema>
The RentTime element has been pointed out the service renting time, is unit with the second.The RentResult element has pointed out to rent the result.
Below with the corresponding relation between each field name and its content and value in the explanation of tables service renting response message:
| Field name | Content | Value |
| Rent the result | The service renting result shows that whether service renting runs succeeded | ACCESSDENIED: insufficient permission SERVICENOTFOUND: there is not SERVICENOTRENTED in service: SERVICEBUSY is not rented in service: the busy SUCCESS of service: rent/cancel and rent successfully |
| Rental period | Actual renting successfully the | 32 signless integers |
When service object that service use equipment no longer needs to have rented, can initiate cancellation to service providing device and rent process.
Cancellation is rented process and rents process similar, and difference is to cancel the type of renting in the lease request message, and to answer value be RENTCOMPLETE, and do not need to send the rental period.Do not need the RentTime element in the response message that cancellation is rented.
Security attribute for the destination service object is the service of private (PRIVATE), and service providing device need be carried out authority checking when handling lease request, then need not to carry out authority checking for security attribute for the destination service of opening (OPEN).
When not having asset management device in the network, service use equipment uses the blank certificate of authority to initiate to rent application process to destination service place equipment, need not to carry out the authorized application process to other equipment.
When having asset management device in the network, the service user should send authorization requests to asset management device earlier, the purpose of authorized application process is to obtain use authority, service use equipment can initiate rent application process to destination service place equipment after obtaining use authority to destination service.
Use the delegated strategy of equipment to judge whether to give service use equipment to use the authority of service by asset management device according to set service; When delegated strategy is open (OPEN), in described authorized application response message, provide and authorize successful authorized application result, generate content simultaneously and be the empty certificate of authority, and send to the use equipment of serving with the authorized application response message; When delegated strategy is private (PRIVATE), in described authorized application response message, provide the authorized application result who authorizes success or insufficient permission, simultaneously to authorizing the corresponding substantial certificate of authority of successful then generation, the content that then generates to insufficient permission is the empty certificate of authority, and the certificate of authority sends to service use equipment with the authorized application response message.
The authorized application process is divided into two kinds of situations according to asset management device to the Authorization result of serving use equipment and carries out: possess rights of using if indicated this service use equipment in the authorization response message of asset management device, be AuthorityRole=1, then serve use equipment and possessed authority to the service providing device rental service; Do not possess rights of using if indicated this equipment in the authorization response message of asset management device, be AuthorityRole=0, then serve use equipment and do not possess authority to the service providing device rental service, can't rent application process, this moment, device authorization can realize by the manual set-up mode of user.
Service use equipment sends the authorized application request message to asset management device, beginning authorized application process.
The authorized application request message format that the embodiment of the invention adopted is as follows:
<schema xmlns=“http://www.w3.org/2001/XMLSchema” xmlns:leh=“http://www.legend.com/EHome” targetNamespace=“http://www.legend.com/EHome”> <element name=“AuthorityRequest”type=“leh:AuthorityRequestType”> <complexType name=”AuthorityRequestType”> <sequence> <element name=”DestinationDeviceID”> <!-- SIPO <DP n="12"> --> <dp n="d12"/> <simpleType> <restriction base=“string”> <pattern value=“0x[0-9]{32}”> </restriction> </simpleType> </element> <element name=”DestinationServiceID” type=”unsignedInt”> </sequence> </complexType> </schema>
Below with the field name of containing element and the corresponding relation of its content and value in the explanation of tables service authorization request message:
| Field name | Content | Value |
| Source device ID | Service user's device identification | 128 signless integers |
| The source service ID | Service user's | 32 signless integers |
| Target device ID (DestinationDeviceID) | Service provider's device identification | 128 signless integers |
| Destination service ID (DestinationServiceID) | Service provider's | 32 signless integers |
Service authorization request message is transmitted by TCP, shares key if exist between equipment that initiation is rented and the asset management device, then should adopt this key to realize encrypted transmission based on TLS.
After asset management device is received the authorized application request message, judge whether to give service use equipment to authorize according to the delegated strategy that self is provided with, and result is sent to service use equipment.
The authorization of service response message format that the embodiment of the invention adopted is as follows:
<schema xmlns=“http://www. w3.org/2001/XMLSchema” xmlns:leh= “http://www.legend.com/EHome” targetNamespace=“http://www.legend.com/EHome”> <element name=“AuthorityResponse”type=“leh:AuthorityResponse Type”> <complexType name=“AuthorityResponseType”> <sequence> <element name=“AuthorityResult”> <!-- SIPO <DP n="13"> --> <dp n="d13"/> <simpleType> <restriction base=”string”> <enumeration value=”ACCESSDENIED”> <enumeration value=”SUCCESS”> <enumeration value=”SERVICENOTFOUND”> </restriction> </simpleType> </element> <element name=”Authority” type=”string”> </sequence> </complexType> </schema>
Below with the field name of containing element and the corresponding relation (service renting authorization message Authority) of its content and value in the explanation of tables authorization of service response message:
| Field name | Content | Value |
| Authorization result (AuthoriyResult) | The result of authorized application | ACCESSDENIED: insufficient permission SERVICENOTFOUND: there is not SUCCESS in service: authorize successfully |
| License the time period | Authorize the time period that allows service to use | 32 signless integers |
| The source service ID | Service user's | 32 signless integers |
| Source device ID | Service user's device identification | 128 signless integers |
| Destination service ID | Service provider's | 32 signless integers |
| Target device ID | Service provider's device identification | 128 signless integers |
| Authorisation device ID | The device identification of the certificate of authority is provided | 128 signless integers |
| Authorize zero-time | The time that mandate can be brought into | 32 signless integers |
| The certificate of authority after the encryption | Be used to verify the digital certificate of user right | Character string |
| Certificate of authority length after the encryption | The length of the certificate of | 32 signless integers |
If the authorized application success is then served use equipment and can be generated the service renting request with this authorization message, initiate the service renting process to service providing device.
Referring to Fig. 4, service renting in the master-slave mode home network when shown in the figure asset management device being arranged and authorization flow figure.
Step 41, service use equipment sends service authorization request message to asset management device;
Step 42, asset management device to authorization of service application handle;
Step 43, asset management device sends the authorization of service response message to service use equipment;
Step 44, service are used device processes authorization of service result;
Step 45, service use equipment sends the service renting request message to service providing device;
Step 46, service providing device are handled this service renting request;
Step 47, service providing device sends the service renting response message to service use equipment;
Step 48, service use device processes to rent the result.
Method of the present invention is supported family's backbone network dynamic group net and resource-sharing in family's network range, thereby has improved the interoperability and the ease for use of household equipment.In the home network any supports the equipment of backbone network protocol can issue its other resources information in network, finds the resource information that miscellaneous equipment provided, and carries out resource-sharing according to backbone network protocol between the equipment.
Claims (14)
1. service renting and authorization method when realizing resource-sharing in the home network is characterized in that comprising:
A. when having asset management device in the network, send the authorized application request message by service use equipment to asset management device, the beginning authorized application; Asset management device sends the authorized application response message that has the authorized application result to service use equipment; Service use equipment sends the service renting request message to service providing device, beginning service renting process; Continuous again execution in step c and d;
B. when not having asset management device in the network, use equipment to send the service renting request message, beginning service renting process to service providing device by the service of setting up good equity connection; Continuous again execution in step c and d;
C. the service providing device that receives the service renting request message is made according to the current virtual condition that is requested rental service and being agreed or dissenting renting replied;
D. obtain agreeing to rent the service of replying and use equipment, use the service that service providing device provided.
2. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1, it is characterized in that: also comprise the process that cancellation is rented after the described steps d, send the cancellation lease message by service use equipment to service providing device, comprise the certificate of authority in the message that cancellation is rented, the certificate content is identical with certificate content in the service renting request message, and this service cancellation is rented when service providing device allows.
3. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 2 is characterized in that: described cancellation lease message includes the service providing device sign at destination service place at least, type is rented in the service identifiers and the cancellation of destination service.
4. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1 and 2, it is characterized in that the beginning authorized application among the described step a, also comprise: use the delegated strategy of equipment to judge whether to give service use equipment to use the authority of service according to set service by asset management device; When the security attribute of service is open (OPEN), in described authorized application response message, provide and authorize successful authorized application result, generate content simultaneously and be the empty certificate of authority, and send to the use equipment of serving with the authorized application response message; When the security attribute of service is private (PRIVATE), in described authorized application response message, provide in the mandate of authorizing success or insufficient permission and ask the result, generation simultaneously meaningful or content accordingly is the empty certificate of authority, and sends to service use equipment with the authorized application response message.
5. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1 and 2 is characterized in that among the described step a, described authorized application request message, and (TCP) transmits by transmission control protocol.
6. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1 and 2, it is characterized in that in described step a, when asset management device and service are used equipment room to have to share key, adopt and to share key and described authorized application request message be carried out encrypted transmission based on TLS.
7. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1 and 2, it is characterized in that among the described step a, include source device ID, source service ID, target device ID and destination service id information in the described authorized application request message at least; Include Authorization result in the described authorized application response message, license the time period, source device ID, source service ID, target device ID, destination service ID, authorisation device ID, authorize zero-time, the certificate of authority after encrypting and encrypt after certificate of authority length; Described Authorization result comprises that insufficient permission, service do not exist and the authorized application success.
8. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1 and 2, it is characterized in that also comprising among the described step b: generate the certificate of authority by service use equipment basis with service providing device employed shared key when creating reciprocity the connection, or directly generate the certificate of authority of sky; Service use equipment sends the service renting request message that has this certificate of authority to service providing device.
9. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1, it is characterized in that: the lease request message among described step a or the b, include at least service providing device sign, the source service at service identifiers, the service place, source of service providing device sign, the destination service at destination service place service identifiers, authorisation device sign, expectation rental period and rent type.
10. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 9, it is characterized in that: when the security attribute of destination service is private (PRIVATE), also include the service renting authorization message in the described lease request message.
11. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1 and 2, it is characterized in that: the lease request message among described step a or the b, (TCP) transmits by transmission control protocol.
12. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1 and 2, it is characterized in that: in described step a or b, when having between service use equipment and service providing device when sharing key, adopt and to share key and described lease request message be carried out encrypted transmission based on TLS.
13. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1 and 2 is characterized in that described step c further comprises: the security attribute of judging the service renting request; For security attribute is the service renting request of private, checks the credibility of authorization message; Making described renting when authorization message is credible replys.
14. service renting and authorization method when realizing resource-sharing in a kind of home network according to claim 1 and 2 is characterized in that: the described response response packet of renting contains insufficient permission, service and does not exist, serve not rent, serve and hurry and rent/cancel the result of renting of renting success.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB021295328A CN1178428C (en) | 2002-09-12 | 2002-09-12 | Service renting and authorizing method for realizing resource sharing in household network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB021295328A CN1178428C (en) | 2002-09-12 | 2002-09-12 | Service renting and authorizing method for realizing resource sharing in household network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1481112A true CN1481112A (en) | 2004-03-10 |
| CN1178428C CN1178428C (en) | 2004-12-01 |
Family
ID=34144196
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB021295328A Expired - Fee Related CN1178428C (en) | 2002-09-12 | 2002-09-12 | Service renting and authorizing method for realizing resource sharing in household network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1178428C (en) |
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100334833C (en) * | 2004-05-25 | 2007-08-29 | 联想(北京)有限公司 | Method for using server resources by client via a network |
| CN100367709C (en) * | 2004-04-26 | 2008-02-06 | 株式会社理光 | Service providing method, service providing apparatus, computer-readable storage medium and computer program product |
| CN100587698C (en) * | 2006-05-08 | 2010-02-03 | 国际商业机器公司 | Method and system for protecting rent resource in computer |
| CN1953410B (en) * | 2005-10-19 | 2010-05-26 | 三星电子株式会社 | Method and apparatus for controlling home device exclusively in the home network |
| CN102801686A (en) * | 2011-05-23 | 2012-11-28 | 华为终端有限公司 | Equipment control method, main equipment, secondary equipment as well as main-secondary equipment group |
| CN102831352A (en) * | 2012-09-11 | 2012-12-19 | 南京天溯自动化控制系统有限公司 | Equipment authorization use method and equipment for method |
| CN101299705B (en) * | 2007-05-02 | 2013-02-06 | 村田机械株式会社 | Relay server and relay communication system |
| US8499083B2 (en) | 2006-03-29 | 2013-07-30 | Murata Kikai Kabushiki Kaisha | Relay device and communication system |
| CN101299704B (en) * | 2007-05-02 | 2013-10-16 | 村田机械株式会社 | Relay server and relay communication system |
| US8606941B2 (en) | 2007-05-02 | 2013-12-10 | Murata Machinery, Ltd. | Relay server and relay communication system |
| CN103812904A (en) * | 2012-11-13 | 2014-05-21 | 联想(北京)有限公司 | Resource sharing method, resource sharing request method, electronic device and mobile terminal |
| CN104065684A (en) * | 2013-03-21 | 2014-09-24 | 联想(北京)有限公司 | Information processing method, electronic device and terminal device |
| CN104410640A (en) * | 2014-12-03 | 2015-03-11 | 广东威创视讯科技股份有限公司 | Authority control method and system for acquiring information under distributed type cooperative environment |
| CN107800712A (en) * | 2017-11-09 | 2018-03-13 | 陕西外号信息技术有限公司 | A kind of optical label mandate rental method and system |
-
2002
- 2002-09-12 CN CNB021295328A patent/CN1178428C/en not_active Expired - Fee Related
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100367709C (en) * | 2004-04-26 | 2008-02-06 | 株式会社理光 | Service providing method, service providing apparatus, computer-readable storage medium and computer program product |
| CN100334833C (en) * | 2004-05-25 | 2007-08-29 | 联想(北京)有限公司 | Method for using server resources by client via a network |
| CN1953410B (en) * | 2005-10-19 | 2010-05-26 | 三星电子株式会社 | Method and apparatus for controlling home device exclusively in the home network |
| US8499083B2 (en) | 2006-03-29 | 2013-07-30 | Murata Kikai Kabushiki Kaisha | Relay device and communication system |
| CN100587698C (en) * | 2006-05-08 | 2010-02-03 | 国际商业机器公司 | Method and system for protecting rent resource in computer |
| CN101299704B (en) * | 2007-05-02 | 2013-10-16 | 村田机械株式会社 | Relay server and relay communication system |
| US8606941B2 (en) | 2007-05-02 | 2013-12-10 | Murata Machinery, Ltd. | Relay server and relay communication system |
| CN101299705B (en) * | 2007-05-02 | 2013-02-06 | 村田机械株式会社 | Relay server and relay communication system |
| CN102801686A (en) * | 2011-05-23 | 2012-11-28 | 华为终端有限公司 | Equipment control method, main equipment, secondary equipment as well as main-secondary equipment group |
| CN102801686B (en) * | 2011-05-23 | 2016-08-03 | 华为终端有限公司 | Apparatus control method, main equipment, from equipment and master-slave equipment group |
| CN102831352A (en) * | 2012-09-11 | 2012-12-19 | 南京天溯自动化控制系统有限公司 | Equipment authorization use method and equipment for method |
| CN102831352B (en) * | 2012-09-11 | 2015-02-18 | 南京天溯自动化控制系统有限公司 | Equipment authorization use method and equipment for method |
| CN103812904A (en) * | 2012-11-13 | 2014-05-21 | 联想(北京)有限公司 | Resource sharing method, resource sharing request method, electronic device and mobile terminal |
| CN104065684A (en) * | 2013-03-21 | 2014-09-24 | 联想(北京)有限公司 | Information processing method, electronic device and terminal device |
| CN104065684B (en) * | 2013-03-21 | 2019-03-08 | 联想(北京)有限公司 | Information processing method, electronic equipment and terminal device |
| CN104410640A (en) * | 2014-12-03 | 2015-03-11 | 广东威创视讯科技股份有限公司 | Authority control method and system for acquiring information under distributed type cooperative environment |
| CN104410640B (en) * | 2014-12-03 | 2019-04-16 | 广东威创视讯科技股份有限公司 | A kind of authority control method and system of the acquisition of information under distributed cooperation environment |
| CN107800712A (en) * | 2017-11-09 | 2018-03-13 | 陕西外号信息技术有限公司 | A kind of optical label mandate rental method and system |
| CN107800712B (en) * | 2017-11-09 | 2021-04-20 | 陕西外号信息技术有限公司 | Optical label authorization renting method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1178428C (en) | 2004-12-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1166124C (en) | Equipment peer-to-peer connection method in realizing dynamic network connection in home network | |
| CN100340084C (en) | A method for implementing equipment group and intercommunication between grouped equipments | |
| US8954741B2 (en) | Apparatus and method for supporting family cloud in cloud computing system | |
| JP4804055B2 (en) | Device network operation method | |
| CN1197297C (en) | A platform information switch | |
| CN1213567C (en) | Concentrated network equipment managing method | |
| US8396220B2 (en) | System and method of mobile content sharing and delivery in an integrated network environment | |
| US20060143295A1 (en) | System, method, mobile station and gateway for communicating with a universal plug and play network | |
| CN1481112A (en) | Service renting and authorizing method for realizing resource sharing in household network | |
| CN1160911C (en) | Method for realixing dynamic networking connection and resource sharing in equipment of home backbone network | |
| CN1823519A (en) | Peer-to-peer telephone system | |
| CN1780234A (en) | System and method for establishing secured connection between home network devices | |
| CN1184776C (en) | Method for the point-to-point protocol log-on user to obtain Internet protocol address | |
| JP4161791B2 (en) | Inter-device authentication system, inter-device authentication method, communication device, and computer program | |
| CN1165851C (en) | Method for discovering equipment in dynamic network combination of family network | |
| JP5043953B2 (en) | Resource transmission method and information providing method | |
| US20080133723A1 (en) | Extended home service apparatus and method for providing extended home service on p2p networks | |
| CN1662897A (en) | Virtual terminal for mobile network interface between mobile terminal and software applications node | |
| CN1160910C (en) | Method for searching serivice in realizing dynamic network connection and sharing recource in home network | |
| KR101162745B1 (en) | Method and apparatus for building personal network and extended personal network | |
| CN1922831A (en) | Method for inserting a new device in a community of devices | |
| CN1282354C (en) | Method of providing services for distance special terminal and relative equipment | |
| CN1223155C (en) | Method for realizing 802.1 X communication based on group management | |
| CN1160912C (en) | Method for equipment registration and concellation in dynamic network connection of home network | |
| JP2006209406A (en) | Communication apparatus |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20041201 Termination date: 20200912 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |