KR102645846B1 - Management apparatus and reader for managing cables based on image code, and method therefor - Google Patents

Abstract

A management device and reader for attaching an image code to a cable in a communication facility and managing the cable based on the image code, and a method therefor are disclosed. According to one aspect, a management device that manages cables based on an image code in which cable information is encrypted and recorded includes: an information management unit that stores cable information and a password for the cable information in a storage unit on an organization basis; A session key generator that receives institution selection information from a reader, generates a session key and transmits it to the reader, retrieves the password corresponding to the institution selection information from the storage unit, encrypts it with the session key, and transmits it to the reader. ; and a scan information management unit that decrypts the encrypted password with the session key, scans the image code attached to the cable, and receives scan-related information from the reader that decrypts the scan information with the decrypted password and stores it in the storage unit. Includes.

Description

Management apparatus and reader for managing cables based on image code, and method therefor}

The present invention relates to a management device and reader for managing cables installed in communication facilities, and a method thereof. More specifically, a management device and reader for managing cables based on the image code by attaching an image code to the cable, and a method thereof. It's about.

For example, an optical distributor is installed in a communication facility, and a plurality of cables (eg, optical cables) are connected to the optical distributor. For example, the number of cables in the eight computer rooms of a domestic public institution consists of a total of 66,328 cable lines. Every year, an average of 10,493 new lines are established and 6,957 lines are removed due to information resource integration projects.

When a failure occurs in a communication network, it must be confirmed and action taken. It is necessary to check which cable in the communication facility caused the failure. As a prerequisite for this, information on cables within communication facilities must be managed. Conventionally, information on cables within communication facilities is managed manually.

However, when building a communication facility for the first time or installing a new cable within a communication facility, cable information is often omitted, and when the cable is changed for purposes such as emergency measures, the cable information is not properly updated due to an administrator's mistake. Therefore, it is difficult to recover from failure. Therefore, a method is needed to check and manage information on multiple cables built within communication facilities in real time.

One method is to attach an identification tag to each cable built in a communication facility and manage it. However, since anyone can access the communication facility, there is a possibility that the information in the identification tag may be leaked, which poses a security vulnerability.

The present invention has been proposed to solve the above-mentioned problems, and its purpose is to provide a management device and reader for managing cables based on the image code by attaching an image code to a cable in a communication facility, and a method thereof.

In addition, the present invention has another purpose in providing a management device and reader that improves security by encrypting and storing information in an image code and allowing only authorized personnel to extract and verify information from the image code, and a method thereof. there is.

According to one aspect, a management device that manages cables based on an image code in which cable information is encrypted and recorded includes: an information management unit that stores cable information and a password for the cable information in a storage unit on an organization basis; A session key generator that receives institution selection information from a reader, generates a session key and transmits it to the reader, retrieves the password corresponding to the institution selection information from the storage unit, encrypts it with the session key, and transmits it to the reader. ; and a scan information management unit that decrypts the encrypted password with the session key, scans the image code attached to the cable, and receives scan-related information from the reader that decrypts the scan information with the decrypted password and stores it in the storage unit. Includes.

The cable information is composed of a plurality of item types, a different password is assigned to each of the plurality of item types, and the session key generator encrypts the password for each of the plurality of item types with the session key. It can be transmitted to the reader.

The information management unit stores person-in-charge authority information for each of the plurality of item types in the storage unit, and the management device receives person-in-charge login information from the reader, and the received person-in-charge login information and the person-in-charge authority information. It further includes an authentication unit that checks whether the reader has authority for each of the plurality of items based on the authentication unit, and the session key generator is configured to select an authorized item type among the plurality of items based on the authority confirmation result of the authentication unit. Only the password can be encrypted with the session key and transmitted to the reader.

The storage unit further stores administrator login information, the authentication unit receives administrator login information from the administrator terminal, and performs administrator authentication using the received administrator login information, and the information management unit performs administrator authentication. From the successful manager terminal, the cable information, password and personnel authority information for each of the plurality of item types can be received and stored in the storage unit.

The scan-related information may include at least one of a reader identification number, person in charge information, scan date and time, or location.

According to another aspect, a reader that manages cables based on an image code in which cable information is encrypted and recorded includes a connection unit that connects to a management device through a communication network and transmits organization selection information to the management device; a session key receiving unit that receives a session key from the management device, receives an encrypted password corresponding to the organization selection information from the management device, and decrypts the received encrypted password with the session key; a scanning unit that scans the image code, decrypts the scan information using the decrypted password, and displays the scan information; and a transmission unit that transmits scan-related information to the management device.

The cable information is composed of a plurality of item types, and a different password is assigned to each of the plurality of item types, and the session key receiving unit receives an encrypted password for each of the plurality of item types, The scan unit may decrypt each of the plurality of item types using each password decrypted with the session key.

The connection unit transmits representative login information to the management device, and the session key reception unit bases the authority confirmation result for each of the plurality of item types based on the representative login information and personnel authority information in the management device. Thus, only the encrypted password for the authorized item type among the plurality of item types can be received from the management device.

The scan-related information may include at least one of a reader identification number, person in charge information, scan date and time, or location.

According to another aspect, in a management device, a method of managing cables based on an image code in which cable information is encrypted and recorded includes the steps of storing cable information and a password for the cable information in a storage unit on an organization basis; Receiving institution selection information from a reader, generating a session key and transmitting it to the reader, retrieving a password corresponding to the institution selection information from the storage unit, encrypting it with the session key and transmitting it to the reader; and decrypting the encrypted password with the session key, scanning the image code attached to the cable, and receiving scan-related information from the reader that decrypts the scan information with the decrypted password and storing it in the storage unit. do.

The cable information is composed of a plurality of item types, and a different password is assigned to each of the plurality of item types. The transmitting step includes encrypting the password for each of the plurality of item types with the session key. It can be transmitted to the reader.

The method includes: storing person-in-charge authority information for each of the plurality of item types in the storage; and receiving representative login information from the reader, and confirming whether the reader has authority for each of the plurality of items based on the received representative login information and the representative authority information, and transmitting. Based on the authority check result, only the password for the authorized item type among the plurality of item types may be encrypted with the session key and transmitted to the reader.

The storing step further stores administrator login information, and the method includes receiving administrator login information from an administrator terminal and performing administrator authentication using the received administrator login information; And it may further include receiving the cable information, a password, and personnel authority information for each of the plurality of item types from the administrator terminal that successfully authenticates the administrator, and storing them in the storage unit.

The scan-related information may include at least one of a reader identification number, person in charge information, scan date and time, or location.

According to another aspect, a method of managing cables in a reader based on an image code in which cable information is encrypted and recorded includes the steps of connecting to a management device through a communication network and transmitting organization selection information to the management device; Receiving a session key from the management device, receiving an encrypted password corresponding to the organization selection information from the management device, and decrypting the received encrypted password with the session key; After scanning the image code, decrypting and displaying scan information using the decrypted password; and transmitting scan-related information to the management device.

The cable information is composed of a plurality of item types, and a different password is assigned to each of the plurality of item types, and the decrypting step includes receiving an encrypted password for each of the plurality of item types, In the displaying step, each of the plurality of item types may be decrypted using each password decrypted with the session key.

The method further includes transmitting representative login information to the management device, and the decrypting step includes authorizing each of the plurality of item types based on the representative login information and representative authority information in the management device. Based on the presence/absence check result, only the encrypted password for the authorized item type among the plurality of item types can be received from the management device.

According to the present invention, by managing cables using image codes, work time can be shortened by performing simple/repetitive operation tasks, and errors and mistakes due to visual confirmation when inspecting cables can be prevented.

In addition, according to the present invention, work efficiency such as collecting, modifying, and removing line numbers can be improved during telecommunication construction work, and communication failure recovery time can be dramatically shortened by providing various information to the image code.

Additionally, according to the present invention, security can be improved by encrypting and storing information in an image code and allowing only authorized personnel to extract and verify information from the image code.

Figure 1 is a diagram showing the configuration of a cable management system according to an embodiment of the present invention.
FIG. 2 is a diagram showing the configuration of the management server of FIG. 1.
FIG. 3 is a diagram showing the configuration of the reader of FIG. 1.
Figure 4 is a flowchart explaining a method of registering cable information in a management server according to an embodiment of the present invention.
Figure 5 is a flowchart explaining a method of checking cable information using a reader according to an embodiment of the present invention.

Hereinafter, embodiments disclosed in the present specification will be described in detail with reference to the attached drawings. However, identical or similar components will be assigned the same reference numbers regardless of reference numerals, and duplicate descriptions thereof will be omitted. The suffix "part" for the components used in the following description is given or used interchangeably only considering the ease of preparing the specification, and does not have a distinct meaning or role in itself. Additionally, in describing the embodiments disclosed in this specification, if it is determined that detailed descriptions of related known technologies may obscure the gist of the embodiments disclosed in this specification, the detailed descriptions will be omitted. In addition, the attached drawings are only for easy understanding of the embodiments disclosed in this specification, and the technical idea disclosed in this specification is not limited by the attached drawings, and all changes included in the spirit and technical scope of the present invention are not limited. , should be understood to include equivalents or substitutes.

Terms containing ordinal numbers, such as first, second, etc., may be used to describe various components, but the components are not limited by the terms. The above terms are used only for the purpose of distinguishing one component from another.

Singular expressions include plural expressions unless the context clearly dictates otherwise. In this application, terms such as “comprise” or “have” are intended to designate the presence of features, numbers, steps, operations, components, parts, or combinations thereof described in the specification, but are not intended to indicate the presence of one or more other features. It should be understood that this does not exclude in advance the possibility of the existence or addition of elements, numbers, steps, operations, components, parts, or combinations thereof.

In implementing the present invention, the components may be subdivided for convenience of explanation, but these components may be implemented in one device or module, or one component may be divided into multiple devices or modules. It can also be implemented in

Figure 1 is a diagram showing the configuration of a cable management system according to an embodiment of the present invention. Referring to FIG. 1, the cable management system according to this embodiment includes a communication facility 100, a plurality of cables 110 connected to the communication facility 100 and each with an image code 111 attached, and carried by a person in charge. A reader 200 that scans the image code 111 attached to each cable 110, stores the cable information and password, and decrypts the encrypted cable information in the image code 111 with the reader 200. It includes a management server 300 that provides a password and manages scan-related information of the reader 200.

The communication facility 100 is a facility including an optical end station device, an optical repeater device, an optical distribution panel, and a household terminal box, and as shown in FIG. 1, a plurality of cables 110 are connected. The communication facility 100 may be operated on a rack basis. An image code 111 is attached to each cable 110, and cable information is encrypted and stored in each image code 111. Here, the cable information includes the name of the organization where the cable 110 is installed, the server hostname (hostname) which is the component resource name, rack location, port number, etc. Each item is encrypted and stored with a password.

Each item stored in the image code 111 attached to one cable 110 may be encrypted and stored with the same password, and preferably, each item may be encrypted and stored with a different password. If each item is encrypted with a different password, each person in charge of managing the cable 110 can selectively access each item. For example, the first person in charge can only check the organization name and rack location, and the second person in charge can check the organization name, rack location, and port number. Furthermore, various information necessary for fault handling, such as vertical/horizontal patches and TPS room information, can be stored in the image code 111.

The image code 111 may be a two-dimensional barcode or, preferably, a QR code. QR codes can store a larger amount of data than barcodes and have a higher scan recognition rate, so it may be preferable to use QR codes rather than barcodes. In this embodiment, a barcode and a QR code are used as examples, but the code is not limited thereto and various image codes such as a 3D image code can be used.

The reader 200 is equipment that can be carried by the person in charge, communicates with the management server 300 through the communication network 400, and scans the image code 111 attached to each cable 110. The reader 200 may be a dedicated device, or may be a general mobile communication terminal such as a smartphone. The reader 200 may have an application installed for operation of this embodiment.

The reader 200 can connect to the management server 300 through the communication network 400, receive institution selection information from the person in charge, and transmit it to the management server 300. The reader 200 receives a session key from the management server 300, receives an encrypted password corresponding to the organization selection information from the management server 300, and decrypts the received encrypted password with the session key, After scanning the image code 111 attached to the cable 110, scan information, that is, cable information, is decrypted using the decrypted password and displayed.

When the cable information consists of a plurality of items and each item is encrypted with one password, the reader 200 can receive one encrypted password from the management server 300. At this time, the reader 200 decrypts one encrypted password using the session key and then decrypts the scan information scanned from the image code 111, that is, each encrypted item, with the decrypted password.

If each item is encrypted with a different password, the reader 200 can receive the encrypted password for each item from the management server 300. At this time, the reader 200 decrypts each encrypted password using the session key, and then decrypts the scan information scanned from the image code 111, that is, each encrypted item, with each decrypted password. At this time, each person in charge using the reader 200 may have different access rights to each item. The reader 200 receives only the encrypted password for the authorized item among each item from the management server 300, based on the result of checking whether or not the authority for each item is based on the login information of the person in charge in the management server 300. can do.

After completing scanning of the image code 111, the reader 200 may transmit scan-related information to the management server 300. Here, the scan-related information may include at least one of a reader identification number, person in charge information, information on the scanned image code 111 (e.g., organization name, rack location, port number), and scan date and time or location. Location can be measured using GPS positioning technology, positioning technology using Wi-Fi, etc.

The management server 300 communicates with the reader 200 through the communication network 400 and provides the reader 200 with a password to decrypt the cable information encrypted and stored in the image code 111, and the reader ( 200) scan-related information may be received and stored from the reader 200, and statistical information may be provided to the manager.

The management server 300 stores cable information for each cable and a password for the cable information in the storage unit. Cable information for each cable is classified and stored based on organization. The password may be set differently for each institution, and in this case, the password may be set differently for each item type that constitutes the cable information for each institution.

When receiving institution selection information from the reader 200, the management server 300 randomly generates a session key and transmits it to the reader 200, and searches for the password of the institution corresponding to the institution selection information, or After searching for the password for each item type of cable information set for the organization corresponding to the organization selection information, the searched password is encrypted with the session key and transmitted to the reader 200.

The management server 300 stores personnel information for each institution in the storage unit. At this time, the management server 300 may store authority information for each item type of cable information for each person in charge. The management server 300 may receive the person in charge login information from the reader 200 and use the received person login information to check whether the person in charge has authority for each item type of cable information in the storage unit. The management server 300 may encrypt only the password for the authorized item type among the plurality of item types using a session key and transmit it to the reader 200 based on the authority check result.

In another embodiment, the management server 300 randomly generates a session key after verifying authority and transmits it to the reader 200, and then encrypts only the password for the authorized item type among the plurality of item types with the session key to transmit the session key to the reader 200. It can be sent to (200).

The management server 300 further stores administrator login information in the storage unit, receives administrator login information from the administrator terminal, performs administrator authentication using the received administrator login information, and determines the administrator terminal that has succeeded in administrator authentication. From there, cable information, password, and person in charge information for each organization can be received and stored in the storage unit.

The management server 300 may perform statistical processing on scan-related information stored in the storage unit and provide related data to the administrator terminal. For example, various statistical information can be provided, such as which image code (111) of the cable of which port number at which rack location in which institution was scanned by each person, movement location by time, number of scans by date/day/time zone, etc. .

The communication network 400 is a wired communication network, 3G, 4G, 5G, 3GPP (3rd Generation Partnership Project), LTE (Long Term Evolution), WIMAX (World Interoperability for Microwave Access), Wi-Fi, Bluetooth communication, and infrared. It includes, but is not limited to, communication, ultrasonic communication, Visible Light Communication (VLC), and Long Range (LoRA).

FIG. 2 is a diagram showing the configuration of the management server 300 of FIG. 1. The management server 300 may include memory, one or more processors (CPUs), peripheral interfaces, input/output (I/O) subsystems, display devices, input devices, and communication circuits. The memory may include high-speed random access memory, and may also include one or more magnetic disk storage devices, non-volatile memory such as flash memory devices, or other non-volatile semiconductor memory devices. Memory can store various information and program instructions, and the program is executed by the processor. Peripheral interfaces connect input/output peripheral devices with the processor and memory. One or more processors execute various software programs and/or sets of instructions stored in memory to perform various functions and process data for the system. The I/O subsystem provides an interface between input/output peripheral devices such as display devices and input devices and peripheral interfaces. The communication circuit performs communication through an external port or communication by RF signals. Communications circuitry converts electrical signals to RF signals and vice versa, through which RF signals can be communicated with communications networks, other mobile gateway devices, and communications devices. The management server 300 includes a storage unit 310, an authentication unit 320, an information management unit 330, a session key generation unit 340, and a scan information management unit 350, which are implemented as programs and stored in memory. It can be stored and executed by at least one processor, and can be implemented and operated as a combination of hardware and software.

The storage unit 310 stores cable information 311 of each cable, a password for encrypting the cable information 312, administrator information 313, person in charge information 314, and scan-related information 315. At this time, the cable information 311 and password 312 are classified and stored based on the organization. The password 312 may be different for each institution, and the password may be different for each item type constituting the cable information 311 within the same institution.

Cable information 311 is information encrypted and stored in the image code 111, and is designated for each cable. The cable information 311 includes, but is not limited to, the name of the organization where the cable 110 is installed, the server hostname (hostname) that is the component resource name, the rack location, and the port number. The password 312 is an encryption key that can decrypt the cable information 311 encrypted and stored in the image code 111.

Administrator information 313 is information about an administrator who can set and manage cable information 311, password 312, and person in charge information 314, and includes name and ID/PW (Password). The person in charge information 314 is information about the person in charge who carries the reader 200 and inspects the cable 110, and includes a name and ID/PW (Password). Personnel authority may be selectively set for each institution, and persona l authority may also be selectively set for each item type constituting the cable information 311. The scan-related information 315 is information received from the reader 200 that scanned the image code 111.

The authentication unit 320 performs personnel authentication and manager authentication. When the authentication unit 320 receives staff login information from the reader 200, it can compare the received staff login information with staff authority information stored in the storage unit 310 to confirm the authority of the staff member. Preferably, the authentication unit 320 can confirm the organization over which the person in charge has authority and the type of item over which the person has authority among the cable information 311 within the organization.

When the authentication unit 320 receives administrator login information from the administrator terminal, it compares the received administrator login information with the administrator information 313 stored in the storage unit 310 and performs authentication of the corresponding administrator. An administrator who has successfully authenticated can set, change, or delete cable information (311), password (312), and person in charge.

The information management unit 330 receives the cable information 311 and the password 312 from the administrator terminal that has successfully authenticated the administrator and stores them in the storage unit 310. The information management unit 330 may receive a password for the cable information 311 from the manager terminal, preferably a password for each item. In addition, the information management unit 330 receives from the administrator terminal a personnel designation input for each institution and each item type constituting the cable information 311 of each institution, and stores authority information for each item type in the storage unit 310. You can save it. Here, designating a person in charge means granting authority. The information management unit 330 provides editing functions such as modification and deletion for each data through the administrator terminal.

The session key generator 340 randomly generates and transmits a session key to the reader 200 that has successfully authenticated the person in charge, and based on the authority check result that is the result of the person in charge, the cable information of the organization with the person in charge's authority ( The password for 311), preferably only the password for the item type for which the person in charge has authority among the plurality of item types constituting the cable information 311, is encrypted with the randomly generated session key and transmitted to the reader 200.

In another embodiment, the session key generator 340 randomly generates a session key after verifying authority and transmits it to the reader 200, and then encrypts only the password for the authorized item type among the plurality of item types with the session key. This can be transmitted to the reader 200.

The scan information management unit 350 receives scan-related information 315 of the image code 111 from the reader 200 and stores it in the storage unit 310. Here, the scan-related information may include, but is not limited to, at least one of the reader identification number, person in charge information, information on the scanned image code 111 (e.g., organization name, rack location, port number), and scan date and time or location. No.

The scan information management unit 350 may perform statistical processing on the scan-related information stored in the storage unit 310 and provide related data to the administrator terminal. For example, various statistical information can be provided, such as whether the image code 111 of the port number of the port number of which rack location of which institution was scanned for each person in charge, movement location by time, number of scans by date/day/time zone, etc.

FIG. 3 is a diagram showing the configuration of the reader 200 of FIG. 1. The reader 200 may include memory, one or more processors (CPU), a peripheral interface, an input/output (I/O) subsystem, a display device, an input device, and a communication circuit. The memory may include high-speed random access memory, and may also include one or more magnetic disk storage devices, non-volatile memory such as flash memory devices, or other non-volatile semiconductor memory devices. Memory can store various information and program instructions, and the program is executed by the processor. Peripheral interfaces connect input/output peripheral devices with the processor and memory. One or more processors execute various software programs and/or sets of instructions stored in memory to perform various functions and process data for the system. The I/O subsystem provides an interface between input/output peripheral devices such as display devices and input devices and peripheral interfaces. The communication circuit performs communication through an external port or communication by RF signals. Communications circuitry converts electrical signals to RF signals and vice versa, through which RF signals can be communicated with communications networks, other mobile gateway devices, and communications devices. The reader 200 includes a connection unit 210, a session key receiver 220, a scan unit 230, and a transmission unit 240, which can be implemented as a program, stored in memory, and executed by at least one processor. It can be implemented and operated through a combination of hardware and software.

The connection unit 210 connects to the management server 300 through the communication network 400. The connection unit 210 performs person authentication by transmitting the person in charge login information (eg, ID/PW) entered by the person in charge to the management server 300. After successful authentication of the person in charge, the connection unit 210 transmits the organization selection information (eg, organization name) input from the person in charge to the management server 300. The management server 300 provides an institution selection menu, and the person in charge can select the institution he or she is responsible for from the institution selection menu.

The session key reception unit 220 receives the session key from the management server 300 after successful authentication of the person in charge in the management server 300 or after it is confirmed that the person in charge has authority for the selected organization based on the person in charge login information. Additionally, an encrypted password corresponding to the institution selection information can be received, and the received encrypted password can be decrypted using the session key.

The session key reception unit 220 receives permission from the management server 300 based on a result of checking whether or not the authority exists for each item type of cable information based on the login information of the person in charge in the management server 300. You can only receive encrypted passwords for certain item types.

The scanning unit 230 scans the image code 111 attached to the cable 110. That is, the scanning unit 230 reads the image code 111 using a camera and extracts encrypted cable information. The scan unit 230 decrypts the extracted cable information, that is, scan information, with the password decrypted by the session key receiver 220 and displays it on a display, etc.

The scan unit 230 may decrypt each encrypted item in the scan information using each password decrypted by the session key receiver 220 for each of the plurality of item types constituting the cable information. If the session key receiver 220 decrypts the password for only some item types among the plurality of items, the scan unit 230 may decrypt the corresponding item in the scan information using the decrypted password.

When the scan is completed in the scan unit 230, the transmission unit 240 transmits scan-related information to the management server 300 through the communication network 400. Here, the scan-related information may include, but is not limited to, at least one of the reader identification number, person in charge information, information on the scanned image code 111 (e.g., organization name, rack location, port number), and scan date and time or location. No.

Figure 4 is a flowchart explaining a method of registering cable information in a management server according to an embodiment of the present invention.

Referring to FIG. 4, in step S401, the administrator accesses the management server 300 through the administrator terminal and logs in by entering administrator login information. The management server 300 performs administrator authentication by comparing the administrator information stored in the storage unit 310 with the input administrator login information, and processes the connection as successful when authentication is successful.

In step S402, the management server 300 receives cable information for each organization from the manager terminal and registers it in the storage unit 310. Cable information for each cable includes, but is not limited to, the name of the organization where the cable 110 is installed, the server hostname (hostname), rack location, and port number, which is the component resource name.

In step S403, the management server 300 receives the password for cable information from the manager terminal and registers it in the storage unit 310. A different password may be assigned to each cable information, or a different password may be assigned to each item type constituting the cable information.

In step S404, the management server 300 receives the person in charge information for each organization from the administrator terminal and registers it in the storage unit 310. At this time, the management server 300 may receive designated person in charge information for each of the plurality of item types constituting the cable information for each organization and store the authority information in the storage unit 310. Here, the contact information may include name, ID, PW, etc.

Figure 5 is a flowchart explaining a method of checking cable information using a reader according to an embodiment of the present invention.

Referring to FIG. 5, in step S501, the person in charge connects to the management server 300 through the communication network 400 using the reader 200 and logs in by entering the person in charge login information. The management server 300 performs authentication by comparing the person in charge information stored in the storage unit 310 with the person in charge login information.

In step S502, the reader 200 receives an organization selection menu from the management server 300, and the person in charge selects an organization in which the cable 110 to be scanned is installed from the organization selection menu. Accordingly, the reader 200 transmits institution selection information to the management server 300.

In step S503, the management server 300 verifies whether the person in charge has authority for the organization corresponding to the organization selection information received in step S502. That is, the management server 300 determines whether the person in charge has authority for the organization corresponding to the received organization selection information based on the person in charge authority information stored in the storage unit 310. Preferably, the management server 300 checks the presence or absence of authority for each of the plurality of item types constituting the cable information 311.

When the authority of the person in charge is confirmed, in step S504, the management server 300 randomly generates a session key and transmits the generated session key to the reader 200 in step S505. And in step S506, the management server 300 extracts the cable information 311 for which the authority of the person in charge has been confirmed, preferably the password for the authorized item type, from the storage unit 310 and encrypts it with the session key.

In step S507, the management server 300 transmits the encrypted password to the reader 200. In step S508, the reader 200 decrypts the encrypted password received in step S507 using the session key received in step S505.

In step S509, the person in charge scans the image code 111 attached to the cable 110 using the reader 200. That is, the reader 200 reads the image code 111 using a camera and extracts information stored in the read image code 111. In step S510, the reader 200 decrypts the information extracted from the image code 111, that is, scan information, with the decrypted password and displays it on a display, etc. When a password is received for each item type, the reader 200 decrypts the information for each item from the scan information using the password for each item type.

In step S511, when scanning is completed, the reader 200 transmits scan-related information to the management server 300 through the communication network 400. Here, the scan-related information may include, but is not limited to, at least one of the reader identification number, person in charge information, information on the scanned image code 111 (e.g., organization name, rack location, port number), and scan date and time or location. No.

While this specification includes many features, such features should not be construed as limiting the scope of the invention or the scope of the claims. Additionally, features described in individual embodiments herein may be combined and implemented in a single embodiment. Conversely, various features described in a single embodiment herein may be implemented individually or in combination as appropriate in various embodiments.

Although operations in the drawings are illustrated in a particular order, it should not be understood that such operations are performed in a particular order as shown, or that they are performed in a sequential order, or that all of the described operations are performed to achieve a desired result. . Multitasking and parallel processing can be advantageous in certain environments. In addition, it should be understood that the division of various system components in the above-described embodiments does not require such division in all embodiments. The program components and systems described above may generally be implemented as a package in a single software product or multiple software products.

The method of the present invention as described above can be implemented as a program and stored in a computer-readable form on a recording medium (CD-ROM, RAM, ROM, floppy disk, hard disk, magneto-optical disk, etc.). Since this process can be easily performed by a person skilled in the art to which the present invention pertains, it will not be described in further detail.

The present invention described above is capable of various substitutions, modifications and changes without departing from the technical spirit of the present invention to those of ordinary skill in the technical field to which the present invention pertains. It is not limited by the drawings.

100: Communication facilities
110: cable
111: image code
200: Reader
300: Management server
400: communication network
210: connection part
220: Session key receiving unit
230: scanning unit
240: Transmission unit
310: storage unit
320: Authentication department
330: Information Management Department
340: Session key generation unit
350: Scan information management unit

Claims (17)

In a management device that manages cables based on an image code in which cable information is encrypted and recorded,
an information management unit that stores cable information and a password for the cable information in a storage unit on an institutional basis;
A session key generator that receives institution selection information from a reader, generates a session key and transmits it to the reader, retrieves the password corresponding to the institution selection information from the storage unit, encrypts it with the session key, and transmits it to the reader. ; and
A scan information management unit that decrypts the encrypted password with the session key, scans the image code attached to the cable, receives scan-related information from the reader that decrypts the scan information with the decrypted password, and stores it in the storage unit. Contains,
The cable information consists of a plurality of item types,
A different password is assigned to each of the plurality of item types,
The session key generator,
A management device characterized in that the password for each of the plurality of item types is encrypted with the session key and transmitted to the reader. delete According to paragraph 1,
The information management department,
Store personnel authority information for each of the plurality of item types in the storage unit,
The management device is,
It further includes an authentication unit that receives staff login information from the reader and checks whether the reader has authority for each of the plurality of items based on the received staff login information and the staff authority information,
The session key generator,
A management device characterized in that, based on the authorization confirmation result of the authentication unit, only the password for the authorized item type among the plurality of items is encrypted with the session key and transmitted to the reader. According to paragraph 3,
The storage unit further stores administrator login information,
The authentication department,
Receives administrator login information from the administrator terminal and performs administrator authentication using the received administrator login information,
The information management department,
A management device, characterized in that, receiving the cable information, a password and personnel authority information for each of the plurality of item types from the administrator terminal that successfully authenticates the administrator and storing them in the storage unit. According to paragraph 1,
The scan-related information is:
A management device comprising at least one of a reader unique number, person in charge information, scan date and time, or location. In a reader that manages cables based on an image code in which cable information is encrypted and recorded,
a connection unit that connects to a management device through a communication network and transmits organization selection information to the management device;
a session key receiving unit that receives a session key from the management device, receives an encrypted password corresponding to the organization selection information from the management device, and decrypts the received encrypted password with the session key;
a scanning unit that scans the image code, decrypts the scan information using the decrypted password, and displays the scan information; and
It includes a transmission unit that transmits scan-related information to the management device,
The cable information consists of a plurality of item types,
A different password is assigned to each of the plurality of item types,
The session key receiver,
receive an encrypted password for each of the plurality of item types;
The scanning unit,
A reader, characterized in that each of the plurality of item types is decrypted using each password decrypted with the session key. delete According to clause 6,
The connection part is,
Transmit the login information of the person in charge to the management device,
The session key receiver,
Encryption for an item type with authority among the plurality of item types from the management device, based on a result of checking whether authority is present for each of the plurality of item types based on the staff login information and staff authority information in the management device. A reader characterized in that it receives only the password that has been entered. According to clause 6,
The scan-related information is:
A reader characterized in that it includes at least one of a reader unique number, person in charge information, scan date and time, or location. In the management device, a method of managing cables based on an image code in which cable information is encrypted and recorded,
Storing cable information and a password for the cable information in a storage unit on an organization basis;
Receiving institution selection information from a reader, generating a session key and transmitting it to the reader, retrieving a password corresponding to the institution selection information from the storage unit, encrypting it with the session key and transmitting it to the reader; and
Decrypting the encrypted password with the session key, scanning the image code attached to the cable, and receiving scan-related information from the reader that decrypts the scan information with the decrypted password and storing it in the storage unit. ,
The cable information consists of a plurality of item types,
A different password is assigned to each of the plurality of item types,
The transmitting step is,
A method characterized in that the password for each of the plurality of item types is encrypted with the session key and transmitted to the reader. delete According to clause 10,
storing administrator authority information for each of the plurality of item types in the storage; and
Receiving staff login information from the reader, and confirming whether the reader has authority for each of the plurality of items based on the received staff login information and the staff authority information,
The transmitting step is,
A method characterized by encrypting only passwords for authorized item types among the plurality of item types with the session key and transmitting them to the reader based on the authority check result. According to clause 12,
The saving step further stores administrator login information,
The above method is,
Receiving administrator login information from an administrator terminal and performing administrator authentication using the received administrator login information; and
The method further comprising receiving the cable information, a password and personnel authority information for each of the plurality of item types from the administrator terminal that successfully authenticates the administrator and storing them in the storage unit. According to clause 10,
The scan-related information is:
A method comprising at least one of a reader unique number, person in charge information, scan date and time, or location. In a method of managing cables in a reader based on an image code in which cable information is encrypted and recorded,
Connecting to a management device through a communication network and transmitting organization selection information to the management device;
Receiving a session key from the management device, receiving an encrypted password corresponding to the organization selection information from the management device, and decrypting the received encrypted password with the session key;
After scanning the image code, decrypting and displaying scan information using the decrypted password; and
Transmitting scan-related information to the management device,
The cable information consists of a plurality of item types,
A different password is assigned to each of the plurality of item types,
The decoding step is,
receive an encrypted password for each of the plurality of item types;
The steps indicated above are:
A method characterized in that each of the plurality of item types is decrypted using each password decrypted with the session key. delete According to clause 15,
Further comprising transmitting representative login information to the management device,
The decoding step is,
Encryption for an item type with authority among the plurality of item types from the management device, based on a result of checking whether authority is present for each of the plurality of item types based on the staff login information and staff authority information in the management device. A method characterized in that it receives only the password that has been entered.