KR20170059788A - Method and apparatus for controlling data transmission - Google Patents

Abstract

The present invention relates to a method for controlling data transmission, and more specifically, to a method for controlling data transmission to perform a reactivation procedure regarding network connection in accordance with movement of a terminal or a security problem in an internet of things (IoT) system, to which a narrowband communication technology is applied, and an apparatus therefor. To this end, according to an embodiment of the present invention, the method for controlling data transmission comprises: a step of transmitting a re-activation message to a terminal device, which is transmitting data to a service server, in accordance with a preset condition after performing a joining procedure; and a step of re-performing the joining procedure regarding the terminal device by a join request message from the terminal device receiving the re-activation message.

Description

TECHNICAL FIELD [0001] The present invention relates to a data transfer control method,

The present invention relates to a data transmission control method, and more particularly, to an Internet of Things (IoT) system to which a Narrowband communication technology is applied, A data transmission control method for performing an activation process, and an apparatus therefor.

The contents described in this section merely provide background information on the present embodiment and do not constitute the prior art.

In order to popularize the Internet of the Things (IoT) service, it is necessary to transmit and receive a small amount of data of various sensors and control devices by securing reliability and security at a long distance. However, the interfaces of devices applied to the current IoT are standardized There is no universality.

To solve these problems, LPWA (Low Power Wide Area) network technology has recently been attracting attention. LPWA communication technology is a term collectively referred to as IoT-based network technology that is specialized for small amount of data transmission that supports low battery life and long battery life requiring low-speed transmission. Typical examples of such LPWA network technology are LoRa Technology.

The LoRa (Long Range Sub-Ghz Module) is a low-power, long-distance communication protocol using 900MHz band frequency, which eliminates the need for many repeaters and APs to reduce the cost of infrastructure construction and provides greater scalability and cost for embedded applications Which means a communication protocol that can provide efficiency.

Such an IoT system using LoRa technology can be implemented as a LoRa device, a network server, and an application server. In this case, the LoRa device applied to the IoT service decides the related key value in the network joining procedure, and encrypts / decrypts the data using the key value.

Due to such encryption / decryption, if an independent network is established for a certain area, the LoRa device that has performed the joining procedure in the independent network can not continuously provide the same service in the external network.

In addition, when the key value is not known to a network access authorized user, it is possible to manipulate the data by disguising the terminal to which the network access is granted, or to eavesdrop on the information transmitted and received in the communication network.

Accordingly, it is necessary to perform a re-entry procedure for the LoRa device in the server providing the service, if necessary, to block the roaming of the LoRa device or the access of unauthorized third parties.

Korean Patent Laid-Open No. 10-2015-0035971 (Name: Communication protocol for secure data transmission between smart devices or smart sensors and network gateways on the Internet, 2015.04.07)

According to an aspect of the present invention, there is provided a data transmission control method for re-performing a network join procedure using a re-activation message when there is a movement of a terminal apparatus between networks or a security threat from another terminal apparatus, Device.

In addition, the present invention intends to control data transmission in consideration of mobility between networks through setting of conditions for detecting movement or security threat of a terminal device.

However, the object of the present invention is not limited to the above-mentioned objects, and other objects not mentioned can be clearly understood from the following description.

According to another aspect of the present invention, there is provided a data transmission control method for a terminal device that is transmitting data to a service server after performing a subscription procedure, ) Message; And re-executing the joining procedure for the terminal apparatus according to a Join Request message from the terminal apparatus that has received the reactivation message; May be provided.

The present invention also provides a network interface module for performing a subscription procedure with a terminal apparatus and transmitting / receiving data to / from a terminal apparatus that has performed the subscription procedure, After a subscription procedure is performed through the network interface module, a terminal transmitting the data to the service server transmits a Re-Activation message in accordance with predetermined conditions, And performs MIC (Message Integrity Code) check on the data transmitted from the terminal apparatus. If the MIC check fails, the terminal checks the MIC (Join Integrity Code) A control module for transmitting a reactivation message to the device; And a service server for providing the service to the service server.

Further, the present invention can provide a computer-readable recording medium on which a program for executing the data transfer control method as described above is recorded, and a program stored in the recording medium.

According to the present invention, in the communication between the service server and the terminal device that is transmitting data, when the pre-set condition is satisfied, the terminal device transmits a re-activation message to the terminal, It is possible to solve the problem caused by the security threat of the terminal.

In addition, various effects other than the above-described effects can be directly or implicitly disclosed in the detailed description according to the embodiment of the present invention to be described later.

1 is a block diagram of a data transmission control system according to an embodiment of the present invention.
2 is a block diagram illustrating a main configuration of a network server included in a service server according to the present invention.
3 is a diagram schematically illustrating a case where a mobile station moves in a data transmission control system according to an embodiment of the present invention.
FIG. 4 through FIG. 6 are data flow charts for explaining a data transmission control method according to an embodiment of the present invention.
7 is a diagram schematically showing a case where a key value is deodorized in a data transmission control system according to another embodiment of the present invention.
8 to 10 are data flow charts for explaining a data transmission control method according to another embodiment of the present invention.

BRIEF DESCRIPTION OF THE DRAWINGS For a more complete understanding of the nature and advantages of the present invention, reference should be made to the following detailed description taken in conjunction with the accompanying drawings, in which:

In the following description and the accompanying drawings, detailed description of well-known functions or constructions that may obscure the subject matter of the present invention will be omitted. It should be noted that the same constituent elements are denoted by the same reference numerals as possible throughout the drawings.

The terms and words used in the following description and drawings are not to be construed in an ordinary sense or a dictionary, and the inventor can properly define his or her invention as a concept of a term to be described in the best way It should be construed as meaning and concept consistent with the technical idea of the present invention. Therefore, the embodiments described in the present specification and the configurations shown in the drawings are merely the most preferred embodiments of the present invention, and not all of the technical ideas of the present invention are described. Therefore, It is to be understood that equivalents and modifications are possible.

Also, terms including ordinal numbers such as first, second, etc. are used to describe various elements, and are used only for the purpose of distinguishing one element from another, Not used. For example, without departing from the scope of the present invention, the second component may be referred to as a first component, and similarly, the first component may also be referred to as a second component.

In addition, when referring to an element as being "connected" or "connected" to another element, it means that it can be connected or connected logically or physically. In other words, it is to be understood that although an element may be directly connected or connected to another element, there may be other elements in between, or indirectly connected or connected.

Also, the terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the invention. The singular expressions include plural expressions unless the context clearly dictates otherwise. It is also to be understood that the terms such as " comprising "or" having ", as used herein, are intended to specify the presence of stated features, integers, It should be understood that the foregoing does not preclude the presence or addition of other features, numbers, steps, operations, elements, parts, or combinations thereof.

In addition, embodiments within the scope of the present invention include computer readable media having or carrying computer executable instructions or data structures stored in computer readable media. Such computer-readable media can be any available media that is accessible by a general purpose or special purpose computer system. By way of example, and not limitation, such computer-readable media can comprise RAM, ROM, EPROM, CD-ROM or other optical disk storage, magnetic disk storage or other magnetic storage devices, or in the form of computer- But is not limited to, a physical storage medium such as any other medium that can be used to store or communicate certain program code means of the general purpose or special purpose computer system, .

In the following description and claims, "network" or "communication network" is defined as one or more data links that allow electronic data to be transmitted between computer systems and / or modules. When the information is transmitted or provided to a computer system via a network or other (wired, wireless, or a combination of wired or wireless) communication connection, the connection may be understood as a computer-readable medium. Computer readable instructions include, for example, instructions and data that cause a general purpose computer system or special purpose computer system to perform a particular function or group of functions. The computer executable instructions may be binary, intermediate format instructions, such as, for example, assembly language, or even source code.

Particularly, in the embodiment of the present invention, one network means a gateway and a terminal device managed under the same network server, and a gateway and a terminal device managed by different network servers belong to different networks, respectively.

In addition, the invention may be practiced with other computer systems, including personal computers, laptop computers, handheld devices, multiprocessor systems, microprocessor-based or programmable consumer electronics, network PCs, minicomputers, mainframe computers, a pager, and the like. < RTI ID = 0.0 > [0040] < / RTI >

The invention may also be practiced in distributed systems environments where both local and remote computer systems linked by a combination of wired data links, wireless data links, or wired and wireless data links over a network perform tasks. In a distributed system environment, program modules may be located in local and remote memory storage devices.

In addition, the embodiment of the present invention can be applied to any narrowband system, and can be applied to LoRa technology in detail.

Therefore, the description according to the present invention will be described based on LoRa technology. However, this embodiment is not limited to the LoRa technology, and can be applied to any place where a Narrowband communication network system such as LTN, Weightless, and RPMA can be applied.

The present invention can also operate on the "Class A / B / C" type of data transfer type defined in the LoRa technology.

Now, a main configuration of a data transmission system for executing a data transmission control method according to an embodiment of the present invention will be described with reference to the drawings.

Referring to FIG. 1, a data transmission system according to the present invention may include one or more terminal devices 100, one or more gateways 200, and a service server 500.

In addition, the service server 500 may include a network server 300 and an application server 400.

The functions of the network server 300 and the application server 400 may be separately implemented as two servers, but they may be combined into one server.

Meanwhile, when the service server 500 is divided into the network server 300 and the application server 400, the embodiment of the present invention is implemented mainly on the network server 300.

In the description of the data transfer control method according to the embodiment of the present invention, the service server 500 will be described as a network server 300 and an application server 400. [

In this case, however, it should be noted that the network server 300 and the application server 400 can operate in the combined service server 500 in the data transfer control method according to the embodiment of the present invention.

First, the terminal device 100 refers to a LoRa device to which the LoRa technology of the present invention is applied, and may correspond to various object devices capable of object communication. Various kinds of things such as various sensors, control devices, mobile phones, refrigerators, vacuum cleaners, washing machines, factory machines, vending machines, etc. can be operated by the terminal device 100 of the present invention.

In this terminal device 100, data transfer operations may be different for each LoRa type. For example, the class may be classified according to whether the downlink data packet of the terminal device 100 is received or not.

The terminal 100 may transmit data by changing a class that is classified through a MAC layer for data transmission. Information that the MAC layer for changing data and transmitting data has in the terminal device 100 The gateway 200, and the service server 500, respectively.

The class A includes a class type in which the terminal device 100 can receive a downlink data packet a predetermined number of times (for example, one second) after the transmission of the uplink data packet Class B means a class type in which the terminal apparatus 100 can receive a downlink data packet every fixed period (for example, 128 seconds), and class C means a class capable of always receiving a downlink data packet Type.

When the IoT terminal devices belonging to a specific group receive the same data at the same time, the same data is broadcast to the IoT terminal devices belonging to the specific group, There may be a class type that can receive data packets.

The gateway 200 is connected to the terminal device 100 and transfers the information transmitted from the terminal device 100 to the network server 300 and the information transmitted from the network server 300 to the terminal device 100 Role. In particular, the gateway 200 of the present invention can be a base station to which the LoRa technology is applied, and can transmit and receive packets in a spread spectrum CDMA (Code Division Multiple Access) scheme capable of simultaneous transmission.

The gateway 200 of the present invention may be connected to a plurality of terminal devices 100 and may transmit information transmitted from the terminal device 100 allocated or located within a certain radius to the network server 300, Including the identification number of < / RTI > The network server 300 can confirm the gateway 200 to which the terminal device 100 is connected and performs a process of correctly transmitting the data packet transmitted from the application server 500 to the gateway 200. [

The network server 300 refers to a node that serves as an exchange for authenticating the terminal device 100 and supporting transmission and reception of packets. More specifically, the network server 300 can relay the subscription procedure between the terminal device 100 and the application server 400. That is, when a join request message for connection to the application server 400 is transmitted from the terminal device 100, the application server 400 is checked using the application identification information included in the registration request message, And transmits a join request message to the application server 400. When a confirmation message for a join request message is received from the application server 400, the network ID and the terminal device address information are checked and transmitted to the application server 400 to perform encryption in the application server 400 And a session key generation process for the session key.

When the subscription process is completed through this process, the network server 300 can perform a message intergrity check (MIC) on data packets transmitted and received between the terminal device 100 and the application server 500 At this time, integrity verification can be performed using the session key. As described above, the session key may be divided into a network session key and an application session key.

Upon receiving a Join Request message from the terminal device 100 after completing the group setting according to each terminal device 100 and the setting of the session key according to each group, The group to which the apparatus 100 belongs can be confirmed from the set information and the network session key and the application session key mapped to the group can be transmitted to the terminal device 100 together with a Join Accept message.

The application server 400 is connected to the network server 300 and can manage and control a unique service for each application using various information transmitted from the terminal device 100 transmitted from the network server 300 have. A plurality of such application servers 400 may exist and provide various application services such as temperature control, radiation management, municipal waste management, shipping management, parking management, air pollution management, fire management, . That is, the application server 400 of the present invention collects various kinds of information generated by the terminal device 100 via the network server 300 and transmits the corresponding control information to the terminal device 100 via the network server 300. [ .

A processor mounted in each device constituting the IoT system for data transmission according to an embodiment of the present invention can process a program command for executing the method according to the present invention. In one implementation, the processor may be a single-threaded processor, and in other embodiments, the processor may be a multithreaded processor. Further, the processor is capable of processing instructions stored on a memory or storage device.

Thus, a system for implementing a data transmission control method according to an embodiment of the present invention has been described.

Hereinafter, a process in which the terminal device 100 according to the general embodiment connects to the service server 500 will be described.

The terminal device 100 first transmits a join request message to the network server 300 via the gateway 200 in order to access the service server 500. [ The terminal device 100 can transmit a join request message to the network server 300 via the gateway 200 when an event such as the first power-on is generated. A Join Request message transmitted from the terminal device 100 to the network server 300 includes application identification information AppEUI, terminal device identification information DevEUI and terminal device random value DevNonce.

The application identification information is allocated by the application server 400 and indicates a previously set application identifier. One terminal device 100 can transmit information to a plurality of application servers 400. [ For example, when the terminal device 100 plays a role of measuring the temperature, it can transmit the temperature information measured by the application server 400 providing the building management service, And transmit the measured temperature information to the providing application server. At this time, the application identification information may be assigned to each application service differently, and the terminal device 100 transmits a subscription request message including application identification information to the application server 400, To the network server (300).

On the other hand, the terminal device identification information is for identifying the terminal devices 100 and may be information allocated at the time of initial installation. Such terminal device identification information may be allocated by the network server 300 or by a provider who has created the terminal device 100. [

The terminal device random value means a value generated by the terminal device 100 for encryption and may be changed in each join procedure.

When the subscription request message is transmitted by the terminal device 100, the network server 300 receives the subscription request message via the gateway 200. [ In this case, the message transmitted through the gateway 200, in this example, the subscription request message may be transmitted including the gateway identification information, and the network server 300 stores the gateway identification information corresponding to the terminal identification information The information transmitted from the application server 400 may be transmitted to the terminal device 100 through the corresponding gateway.

Then, the network server 300 confirms the application server 400 using the application identification information of the subscription request message transmitted by the terminal device 100.

Then, the application server 400 transmits a join request message to the identified application server 400, and the application server 400 performs MIC (Message Integrity Code) check using the application key. That is, the subscriber station 100 confirms whether the subscription request message transmitted through the gateway 200 and the network server 300 is a normal message or integrity. If it is determined that the message is a normal message, the application server 400 transmits a Join Request message confirmation message to the network server 300.

Then, the network server 300 confirms the network ID (NetID) and the terminal device address information (DevAddress) and transmits it to the application server 400.

The application server 400 receives the network session key (NW) by using an application key (AppKey), an application random value (AppNonce), a network ID (NetID), and a terminal device random value (DevNonce) (S113), generates an application session key (Application Session Key) using an application key (AppKey), an application random value (AppNonce), a network ID (NetID) and a terminal device random value (DevNonce) (NW session key) to the network server 300.

The network server 300 stores the received network session key. Here, the network server 300 can check the integrity of the message using the received network session key, or process the message itself.

Thereafter, the application server 400 may transmit a Join Accept message to the terminal device 100. At this time, a message delivered by the application server 400 may be delivered to the terminal device 100 via the network server 300 and the gateway 200. [

The subscription grant message may include an application random value (AppNonce), a network ID (NetID), and a terminal device address information (DevAddress).

At this time, a Join Accept message transmitted from the application server 400 through the network server 300 and the gateway 200 is transmitted by being encrypted with an application key (AppKey), and the terminal device 100 transmits the application key (AppKey). ≪ / RTI >

Thereafter, the terminal device 100 can generate a network session key (NW Session Key) using an application key (AppKey), an application random value (AppNonce), a network ID (NetID), and a terminal device random value (DevNonce) And can generate an application session key (Application Session Key).

After that, the terminal device 100 encrypts the data packet to be transmitted using the network session key or the application session key, and then transmits the data packet to the network server 300 via the gateway 200. [

The network server 300 receives the network session key and performs integrity check using the stored network session key and transmits the integrity check to the application server 400 when there is no problem. Or decrypt the data packet delivered using the application session key.

At this time, the network session key transmits a signaling signal such as request, response, etc. between the network server 300 and the terminal device 100, such as MAC dedicated data, that is, a class type change request and a corresponding response message And the application session key may be a session key for encrypting / decrypting a specific application data message received from the application server 400 or the network server 300 by the terminal device 100 .

Thus, the subscription procedure in the data transmission control system according to the general embodiment of the present invention has been described.

Hereinafter, an apparatus according to an embodiment of the present invention will be described.

2 is a block diagram showing a main configuration of the network server 300 according to the present invention.

2, the network server 300 may include a network interface module 310, a storage module 320, a control module 330, and a user interface module 340.

The network interface module 310 is a device that transmits and receives data from the application server 400 or the gateway 200.

The network server 300 can transmit and receive information to and from a remote device through the network interface module 310.

The network interface module 310 may be represented by a logical combination of one or more software and / or hardware modules, for example, a network interface card and a corresponding Network Driver Interface Specification ("NDIS") stack .

Particularly, in the present invention, when the subscription request message is received from the terminal device 100, the network interface module 310 performs the subscription procedure with the terminal device 100, Lt; / RTI >

The storage module 320 may register the information of the terminal device 100 set to be able to move between the networks and store the profile information of the terminal device 100 that has performed the registration procedure.

In particular, in the case of the terminal device 100 capable of inter-network movement, at least one of an application key (App Key), application identification information (AppEUI), and terminal device identification information (DevEUI) can be stored.

The profile information for the terminal device includes a network session key, an application key, an application identification information (AppEUI), a terminal device identification information (DevEUI), a terminal device address information (Device Address).

The control module 330 transmits a Re-Activation message to the terminal device 100, which is transmitting data to the service server 100, according to predetermined conditions after performing the subscription procedure through the network interface module, And performs a join procedure for the terminal device 100 again according to a Join Request message from the terminal device 100 receiving the reactivation message.

In addition, the control module 330 performs MIC (Message Integrity Code) check on the data transmitted from the terminal device 100. If the MIC check fails, the control module 330 determines whether the terminal device 100 is a pre- And transmit the reactivation message to the terminal device 100. [

In addition, the control module 330 extracts the profile information of the terminal device from the data transmitted from the terminal device 100, compares the extracted profile information with the stored profile information, and determines whether the extracted profile information matches the stored profile information If not, a reactivation message can be sent.

The control module 330 may transmit the reactivation message according to a predetermined time period.

Here, the reactivation message is a message for causing the terminal device 100 to transmit a subscription request message again according to a predetermined condition in response to data transmission of the terminal device 100, and the terminal device 100 transmits a reactivation message In the case of receiving, the subscription request message is transmitted to the service server 500, and the subscription procedure is resumed from the beginning.

The user interface module 340 is a device that transmits and receives data from an external source.

The user interface module 340 may also be coupled to a modem (e.g., a standard modem, a cable modem, or a digital subscriber line (" DSL ") modem) Receive and / or transmit data to an external source.

The network server 300 according to the embodiment of the present invention has the same hardware configuration as that of a typical Web server or a network server. However, the software includes a program module implemented through a language such as C, C ++, Java, Visual Basic, Visual C, or the like.

On the other hand, the memory mounted on each device of the present invention stores information in the device. In one implementation, the memory is a computer-readable medium. In one implementation, the memory may be a volatile memory unit, and in other embodiments, the memory may be a non-volatile memory unit. In one implementation, the storage device is a computer-readable medium. In various different implementations, the storage device may comprise, for example, a hard disk device, an optical disk device, or any other mass storage device.

Although the present specification and drawings describe exemplary device configurations, the functional operations and subject matter implementations described herein may be embodied in other types of digital electronic circuitry, or alternatively, of the structures disclosed herein and their structural equivalents May be embodied in computer software, firmware, or hardware, including, or in combination with, one or more of the foregoing. Implementations of the subject matter described herein may be embodied in one or more computer program products, i. E. One for computer program instructions encoded on a program storage medium of the type for < RTI ID = 0.0 & And can be implemented as a module as described above. The computer-readable medium can be a machine-readable storage device, a machine-readable storage substrate, a memory device, a composition of matter that affects the machine readable propagation type signal, or a combination of one or more of the foregoing.

The main configuration and operation method of the network server 300 according to the embodiment of the present invention have been described above.

Hereinafter, a data transmission control method according to an embodiment of the present invention will be described with reference to FIG. 3 to FIG.

3 is a diagram schematically illustrating a case where a terminal device 100 moves in a data transmission control system according to an embodiment of the present invention.

3 (a) shows an environment in which the terminal device 100 belongs to the first network, and FIG. 3 (b) shows an environment in which the terminal device 100 has moved to the second network.

3, a data transmission control environment according to an exemplary embodiment of the present invention includes at least one terminal device 100, a first gateway 200a and a first service server 500a, And may be formed between the gateway 200b and the second service server 500b. In FIG. 3, the service server is represented as a service server. However, the service server does not necessarily have to be divided, and each network can be formed when a plurality of network servers exist. The number of networks can be determined according to the number of network servers, but in the description of FIG. 3, the case where the first network and the second network are formed will be described.

The application server may exist separately in the first network and the second network, or may be connected to both the first network server and the second network server, and may exist as one.

Referring to FIG. 3, the first gateway 200a is connected to the first service server 500a, and the second gateway 200b is connected to the second service server 500b. Since the first network and the second network have mutually independent network IDs and have different network IDs, the values of the network session key and the application session key are different.

In this situation, as shown in FIG. 3A, when the terminal device 100 is connected to the first network, it can move out of coverage of the first network and move to the second network as shown in FIG. 3B.

The roaming occurs in order to continuously provide the same service, and to allow a customer who has been served in the first network to continuously receive service in addition to the coverage of the first network.

FIG. 4 shows a case where the terminal device 100 connected to the first network attempts to connect to the second network by moving according to an existing method. Hereinafter, it is assumed that each of the first network and the second network is formed on the basis of each network server. Here, each network server may include the function of the application server, or may be configured separately from the application server.

4, the terminal device 100 sends a subscription request to the first network server 300a through the first gateway 200a (S400), and the first network server 300a performs the subscription procedure And transmits a join approval message (S402). The terminal device 100 is connected to the first network and transmits / receives the I / O data to / from the first network server 300a (S404).

Thereafter, it may occur that the terminal apparatus 100 moves out of the first network coverage to the second network coverage (S406). In this case, the terminal device 100 communicates with the second gateway 200b and transmits the encrypted data to the second network server 300b via the second gateway 200b (S408 and S410). Thereafter, the second network server 300b performs an MIC check (S412).

Here, since the terminal device 100 has a network session key generated using the network ID of the first network, it can not be used in the second network. Therefore, the MIC check fails (S414), the call processing is not completed and data transmission / reception can not be performed (S416).

If the first network server 300a notifies the second network server 300b of the information on the available network session key through the subscription procedure of the terminal device 100 and the first network server 300a, The second network server 300b can normally perform call processing with the terminal device 100, and the process is as follows.

5 shows a case where the terminal device 100 connected to the first network tries to connect to the second network by movement when the network session key value is in the second network server 300b.

5, the terminal device 100 sends a subscription request to the first network server 300a through the first gateway 200a (S500), and the first network server 300a performs the subscription procedure described above And transmits a join approval message (S502). The terminal device 100 is connected to the first network and transmits / receives the I / O data to / from the first network server 300a (S504).

Thereafter, it may occur that the terminal apparatus 100 moves out of the first network coverage to the second network coverage (S506). In this case, the terminal device 100 communicates with the second gateway 200b and transmits the encrypted data to the second network server 300b via the second gateway 200b (S508 and S510). Thereafter, the second network server 300b performs an MIC check (S512).

Here, the terminal device 100 has a network session key generated using the network ID of the first network, and the second network server 300b also has a session key generated in the first network, and uses the generated session key to check the MIC (S514), the call processing is normally processed and data transmission / reception can proceed (S516).

However, whether or not to share the network session key value must be determined by the intention of the administrator of the first network, and there arises a security problem caused by exchanging or recording the network session key value. There is a need to pass through the step of transmitting the reactivation message according to the embodiment.

6 is a data flow diagram illustrating a data transfer control method according to an embodiment of the present invention.

6, the terminal device 100 sends a subscription request to the first network server 300a through the first gateway 200a (S600), and the first network server 300a performs the subscription procedure described above And transmits a join approval message (S602). The terminal device 100 is connected to the first network and transmits / receives the I / O data to / from the first network server 300a in step S604.

In addition, a case may occur in which the terminal device 100 moves out of the first network coverage to the second network coverage (S606). The terminal device 100 communicates with the second gateway 200b and transmits the encrypted data to the second network server 300b via the second gateway 200b in the same manner as in the conventional case (S608 , S610). Thereafter, the second network server 300b performs an MIC check (S612).

Here, if the second network server 300b has the network session key value and the MIC check is successful, the call processing is normally performed and the data transmission / reception can proceed (S516).

However, if the MIC check fails, the second network server 300b determines whether the terminal device 100 is a pre-registered terminal device capable of roaming between networks (S614).

Here, the method of verifying whether the terminal device is a pre-registered terminal device is to store at least one of an application key (App Key), application identification information (AppEUI), and terminal device identification information (DevEUI) And compares at least one of an application key (App Key), application identification information (AppEUI), and terminal device identification information (DevEUI) of the terminal device 100 that failed the MIC check with that of the previously registered terminal device Lt; / RTI >

If the terminal device is not the registered terminal device, it can not be connected to the second network with the terminal device not allowed to roam, so that the call processing is incomplete and the data transmission / reception can not be performed (S416).

On the other hand, in the case of a terminal device previously registered, the second network server 300b may transmit a re-activation message (S616, Re Act Req) to the second network for continuous provision of services, 2 gateway 200b to the terminal device (S618).

When the terminal device 100 receives the reactivation message, the terminal device 100 transmits a subscription request to the second network server 300b in step S620. In response thereto, the second network server 300b re- The terminal 100 approves the network subscription of the device 100 (S622), and the terminal 100 can then receive the new network session key and provide the service using the second network.

The data transmission control method according to an embodiment of the present invention has been described above.

Hereinafter, a data transmission control method according to another embodiment of the present invention will be described with reference to FIGS. 7 to 10. FIG.

7 is a diagram schematically showing a case where a key value is deodorized in a data transmission control system according to another embodiment of the present invention.

7, a data transmission control environment according to another embodiment of the present invention may be formed between a plurality of terminal devices 100a and 100b, a gateway 200, and a service server 500. [

In this network environment, the value of the network session key is determined in the subscription procedure, and the I / O data is encrypted / decrypted using the value of the network session key. That is, when the network session key and the application key value are known, data can be manipulated or eavesdropped by other terminal devices.

7, when the first terminal device 100a transmits and receives data between the gateway 200 and the service server 500, the second terminal device 100b takes the network session key and the application key, And the service server 500 as if it were the first terminal device 100a.

Here, the first terminal device 100a is a terminal device that generates a network session key and an application key by performing a normal subscription procedure, and the second terminal device 100b seizes the network session key and the application key in an abnormal manner, To the terminal device.

FIG. 8 is a flowchart illustrating an example of a case where the network session key and the application key may be stolen.

The network server 300 may be replaced with a service server 500 including the function of the application server 400 or may be configured separately from the application server 400.

Referring to FIG. 8, the first terminal device 100a serving as a normal terminal device sends a join request to the network server 300 through the gateway 200 (S800), and the network server 300 performs the above- And transmits a join approval message (S802). The terminal device 100 transmits application identification information (AppEUI), terminal device identification information (DevEUI), and terminal device random value (DevNonce) at the time of the subscription request, and the network server Application random number (AppNonce), terminal device address information (DevAddress), and network ID (NetID).

Using this, the first terminal device 100a and the network server 300 generate the same network session key and application key, respectively (S804a and S804b).

In this situation, the case where the second terminal device 100b takes out the network session key and the application key generated by the first terminal device 100a and the network server 300 through an abnormal method, for example, hacking (S806).

In this case, the network server 300 can recognize that the second terminal device 100b is the first terminal device 100a, and the following two situations may occur.

First, the second terminal device 100b can transmit the manipulated data in spite of the first terminal device 100a. When the second terminal device 100b transmits the manipulated data to the network server 300 through the gateway 200 in steps S808 and S810, the network server 300 determines that the wrong data transmitted from the second terminal device 100b The service is provided based on the data (S812) (Case 1).

For example, the object Internet service by the narrowband communication method of the present invention can be a service related to various infrastructures such as electricity, gas, and heating. In this case, when the first terminal device 100a can measure the usage amount of the infrastructure, the usage amount is manipulated by intervention of the second terminal device 100b, and as a result, the usage fee for the infrastructure is abnormally charged Situations can arise.

The first terminal device 100a transmits the data transmitted and received (S814, S816) to and from the network server 300 via the gateway 200, instead of transmitting the manipulated data to the second terminal device 200b. 2 terminal device 100b to check the data to be transmitted and received, that is, to tap the data (S818) (Case 2).

For example, when the first terminal device 100a measures a temperature of a specific area and transmits the measured temperature to the network server 300, the second terminal device 100b may allow the network administrator There may be situations where such information can be collected without payment without permission.

9 and 10 are a message flow diagram illustrating a process of performing a data transmission control method using a reactivation message in order to prevent such a situation.

9 is a message flow diagram illustrating a process of performing a data transmission control method using a reactivation message to prevent the situation of Case 1.

9, the first terminal device 100a firstly sends a subscription request to the network server 300 through the gateway 200 (S900), and the network server 300 performs the subscription procedure described above, Message (S902). The terminal device 100 transmits application identification information (AppEUI), terminal device identification information (DevEUI), and terminal device random value (DevNonce) at the time of the subscription request, and the network server Application random number (AppNonce), terminal device address information (DevAddress), and network ID (NetID).

Using this, the first terminal device 100a and the network server 300 generate the same network session key and application key, respectively (S904a).

However, the network server 300 does not merely generate the network session key and the application key, but the application identification information (AppEUI), the terminal device identification information (DevEUI) received from the first terminal device, And at least one of the assigned terminal device address information (DevAddress) as profile information for the first terminal device. Such profile information may be in the form of a mapping table of each information for each terminal device.

In this situation, the case where the second terminal device 100b takes out the network session key and the application key generated by the first terminal device 100a and the network server 300 through an abnormal method, for example, hacking (S908).

Thereafter, as in the case 1, the second terminal device 100b can transmit the manipulated data in spite of the first terminal device 100a. The second terminal device 100b transmits the operated data to the network server 300 through the gateway 200 in steps S910 and S912. In this case, the second terminal device 100b holding the network session key and the application key The data is encrypted in the same way as the data of the first terminal device 100a and the MIC check is succeeded so that the first terminal device 100a can transmit and receive data to and from the network server 300. [

In order to prevent this, the network server 300 extracts the profile information from the data received from the terminal device, and compares the profile information with the previously stored profile information (S914). Each terminal device has different terminal device identification information (DevEUI) and the terminal device address information (DevAddress) is given to each terminal device by the network server (300), even if the network session key is stolen. Lt; / RTI >

Here, the profile information may be stored by storing information transmitted / received during the subscription procedure of the terminal apparatus.

If the profile information extracted from the data received from the terminal device matches the profile information stored in the registration procedure, it is determined that the first terminal device 100a is the normal terminal and the service is normally provided (S916).

However, if the profile information extracted from the data received from the terminal device and the profile information stored in the registration procedure do not match even though the network session key is identical and the encryption is made the same as that of the first terminal device 100a , And determines that the second terminal device 100b is another apparatus that has taken out the network session key. The network server 300 drops the received data because it is highly likely to be manipulated data (S918). Since the network session key and the application key are leaked, the network server 300 requests to perform the reactivation procedure ( S920).

Accordingly, the network server 300 transmits the reactivation message to the first terminal device 100a through the gateway 200 (S922, S924).

The first terminal device 100a receiving the re-activation message transmits the subscription request message to the network server (S926), and the network server 300 re-executes the subscription procedure for the terminal device 100a, To the terminal device 100a (S928).

Accordingly, the network session key and the application key are updated in the first terminal device 100a and the network server 300, and the second terminal device 100b receives the network session key from the network server 300 Data can not be transmitted or received (S930).

Thus, the process of performing the data transmission control method using the reactivation message has been described to prevent the situation of Case 1.

10 is a message flow diagram illustrating a process of performing a data transmission control method using a reactivation message in order to prevent the situation of Case 2.

10, the first terminal device 100a first sends a subscription request to the network server 300 through the gateway 200 (S1000), and the network server 300 transmits the subscription request And transmits a registration approval message (S1002). The terminal device 100 transmits application identification information (AppEUI), terminal device identification information (DevEUI), and terminal device random value (DevNonce) at the time of the subscription request, and the network server Application random number (AppNonce), terminal device address information (DevAddress), and network ID (NetID).

Using this, the first terminal device 100a and the network server 300 generate the same network session key and application key, respectively (S1004).

Here, the network server 300 may store the profile information of the first terminal device 100a, but the profile information is not necessarily stored in the embodiment of FIG.

In this situation, the case where the second terminal device 100b takes out the network session key and the application key generated by the first terminal device 100a and the network server 300 through an abnormal method, for example, hacking Lt; / RTI >

Unlike Case 1, the first terminal device 100a transmits data manipulated by using the network session key and the application key captured by the second terminal device 100b, There may be a case where data to be transmitted to the mobile terminal 300 is eavesdropped (S1010).

In this case, since the network server 300 can not detect the occurrence of deodorization through receiving the manipulated data as in the case 1, another method of requesting the first terminal device 100a to reactivate is required.

Accordingly, the network server 300 may be periodically set to generate a reactivation request (S1012).

When the reactivation request is generated, the network server 300 transmits a reactivation message to the first terminal device 100a through the gateway 200 (S1014, S1016).

Upon receiving the reactivation message, the terminal device 100a transmits a subscription request message to the network server (S1018), and the network server S928 re-executes the subscription procedure for the terminal device 100a, To the device 100a (S1020).

The reactivation request occurrence period may be set by the administrator, and a reactivation request is generated for each value x of the occurrence period (JoinPeriod), and steps S1014 to S1020 are repeated.

Accordingly, the network session key and the application key are updated, and the second terminal device 100b can not decrypt the data being transmitted / received through the network session key that has been hijacked so that data can not be intercepted.

The data transmission control method according to the embodiment of the present invention has been described above.

The data transfer control method of the present invention as described above may be provided in the form of a computer readable medium suitable for storing computer program instructions and data. At this time, the program recorded on the recording medium can be read and installed in the computer and executed, thereby executing the above-described functions.

In order to allow a computer to read a program recorded on a recording medium and to execute functions implemented by the program, the above-mentioned program may be stored in a computer-readable medium such as C, C ++, JAVA, machine language, and the like.

The code may include a function code related to a function or the like that defines the functions described above and may include an execution procedure related control code necessary for the processor of the computer to execute the functions described above according to a predetermined procedure. In addition, such code may further include memory reference related code as to what additional information or media needed to cause the processor of the computer to execute the aforementioned functions should be referenced at any location (address) of the internal or external memory of the computer . In addition, when a processor of a computer needs to communicate with any other computer or server that is remote to execute the above-described functions, the code may be stored in a memory of the computer using a communication module of the computer, It may further include a communication-related code such as how to communicate with another computer or a server, and what information or media should be transmitted or received during communication.

Such computer-readable media suitable for storing computer program instructions and data include, for example, magnetic media such as hard disks, floppy disks and magnetic tape, compact disk read only memory (CD-ROM) Optical media such as a DVD (Digital Video Disk), a magneto-optical medium such as a floppy disk, and a ROM (Read Only Memory), a RAM , Random Access Memory), flash memory, EPROM (Erasable Programmable ROM), and EEPROM (Electrically Erasable Programmable ROM). The processor and memory may be supplemented by, or incorporated in, special purpose logic circuits.

The computer readable recording medium may also be distributed over a networked computer system so that computer readable code can be stored and executed in a distributed manner. The functional program for implementing the present invention and the related code and code segment may be implemented by programmers in the technical field of the present invention in consideration of the system environment of the computer that reads the recording medium and executes the program, Or may be easily modified or modified by the user.

While the specification contains a number of specific implementation details, it should be understood that they are not to be construed as limitations on the scope of any invention or claim, but rather on the description of features that may be specific to a particular embodiment of a particular invention Should be understood. Certain features described herein in the context of separate embodiments may be implemented in combination in a single embodiment. Conversely, various features described in the context of a single embodiment may also be implemented in multiple embodiments, either individually or in any suitable subcombination. Further, although the features may operate in a particular combination and may be initially described as so claimed, one or more features from the claimed combination may in some cases be excluded from the combination, Or a variant of a subcombination.

Likewise, although the operations are depicted in the drawings in a particular order, it should be understood that such operations must be performed in that particular order or sequential order shown to achieve the desired result, or that all illustrated operations should be performed. In certain cases, multitasking and parallel processing may be advantageous. Also, the separation of the various system components of the above-described embodiments should not be understood as requiring such separation in all embodiments, and the described program components and systems will generally be integrated together into a single software product or packaged into multiple software products It should be understood.

The present invention relates to a data transmission control method, and more particularly, to an Internet of Things (IoT) system to which a Narrowband communication technology is applied, in particular to an IoT The present invention relates to a data transmission control method for controlling a problem caused by movement or hacking of a terminal, and an apparatus therefor.

According to the present invention, a re-activation request is generated according to a preset condition, and the connection procedure is re-executed to control a network connection of a terminal device to be connected with a terminal device to be connected.

Therefore, it is possible to contribute to the development of the IoT service industry through the above-mentioned data transfer control method. In addition, the present invention is industrially applicable because the present invention is not only possible to be marketed or operated, but also practically possible.

100, 100a, 100b: terminal device
200, 200a, 200b: gateway
300, 300a, 300b: Network server
400: Application server
500, 500a, 500b: service server

Claims (11)

A method of controlling data transmission between one or more terminal devices and a service server,
Transmitting a Re-Activation message to a terminal device that is transmitting data to the service server according to a predetermined condition after performing an association procedure; And
Re-executing the joining procedure for the terminal apparatus by a Join Request message from the terminal apparatus having received the reactivation message;
And the data transfer control method. The method according to claim 1,
Further comprising the step of performing a MIC (Message Integrity Code) check on the data transmitted from the terminal,
Wherein the step of transmitting the reactivation message comprises transmitting a reactivation message to the terminal device when the MIC check fails. 3. The method of claim 2,
Further comprising checking if the terminal device is a pre-registered terminal device if the MIC check fails,
Wherein the step of transmitting the reactivation message comprises transmitting the reactivation message to the pre-registered terminal device of the terminal device that failed the MIC check. 4. The method of claim 3, wherein the step of verifying whether the terminal device is pre-
(AppKey) of the terminal device that has failed the MIC check by storing at least one of an application key (App Key), application identification information (AppEUI) and terminal device identification information (DevEUI) ), Application identification information (AppEUI), and terminal device identification information (DevEUI) with the pre-registered terminal device. The method according to claim 1,
Storing profile information about a terminal device that is transmitting data to the service server after performing the subscription procedure;
Extracting profile information of the terminal apparatus from data transmitted from the terminal apparatus; And
Further comprising the step of comparing the extracted profile information with stored profile information,
Wherein the step of transmitting the reactivation message comprises transmitting the reactivation message if the extracted profile information does not match the stored profile information. 6. The method of claim 5,
(AppEUI), terminal device identification information (DevEUI), and terminal device address information (Device Address) assigned to the terminal device A method for controlling data transmission. The method according to claim 1,
The step of transmitting the reactivation message comprises:
And transmitting the re-activation message according to a predetermined time period. The method according to claim 1,
The data transfer between the terminal device and the service server is performed by,
And a LoRa (Long Range Sub-Ghz Module) communication protocol. A computer-readable recording medium storing a program for executing the method according to any one of claims 1 to 8. 9. A computer program embodied on a computer readable recording medium which is embodied to perform the method recited in any one of claims 1 to 8. A network interface module for transmitting and receiving data to and from the terminal device performing the registration procedure with the terminal device; And
After a subscription procedure is performed through the network interface module, a terminal transmitting the data to the service server transmits a Re-Activation message in accordance with predetermined conditions, The mobile station apparatus re-executes the join procedure for the terminal apparatus according to a Join Request message from the terminal apparatus,
A control module for performing a MIC (Message Integrity Code) check on data transmitted from the terminal and transmitting a reactivation message to the terminal if the MIC check fails;
The service server comprising:

Images