KR20200068068A - ELECTRONIC DEVICE FOR REGISTERING IoT DEVICE, SERVER AND METHOD FOR OPERATING THEREOF - Google Patents

Abstract

According to various embodiments, an electronic device includes at least one processor and a memory. The memory can store instructions which, when executed, enable the processor to receive registration information of at least one IoT device; transmit a request for the generation of authentication information including the registration information of the IoT device to a server; receive a first token from the server; transmit a request for authentication information including the first token to the server generating at least one third token by using at least one second token generated based on the registration information of the IoT device; receive authentication information including the third token from the server; and transmit the authentication information including the third token to the IoT device. Various other embodiments are possible.

Description

Electronic device to register IoT device, server and its operation method{ELECTRONIC DEVICE FOR REGISTERING IoT DEVICE, SERVER AND METHOD FOR OPERATING THEREOF}

Various embodiments relate to electronic devices, servers, and methods of operation for registering IoT devices using temporary accounts.

The IoT device can be registered as a user account through various methods. Generally, a user account may be directly registered using an input device of the corresponding IoT device.

Small things such as light bulbs, speakers, etc. without their own input devices or displays, or home appliances such as refrigerators, washing machines, etc., which have their own display but are inconvenient for user input, can It may not be easy to register directly with a user account.

A method is used in which an electronic device registered as a user account, for example, a smartphone to an IoT device is peer-to-peer (P2P) connected, and an IoT device is registered as a user account through a smartphone.

However, for many users, the process of network registration and user account registration through a peer-to-peer connection is not an easy method, and only about 10% of household appliances having a Wi-Fi connection function that can be classified as a smart appliance are connected to the network and used. .

In order to solve such a problem, a case where an installation engineer performs network connection and user registration of the smart home appliance frequently occurs when the smart home appliance is installed. In such a case, there is a problem in that the installation engineer needs to share authentication information for using an electronic device registered with the user account, for example, a smartphone or logging in to the user account in order to register the user account. As described above, a third party must share the user's information for convenient registration of the IoT device, but there is a problem that it cannot be easily shared due to concerns about exposure of personal information and various regulations thereon.

Various embodiments, in an electronic device that is not registered with a user account, an electronic device, a server, and an electronic device capable of registering an IoT device as a user account without directly sharing the user's authentication information with another person (or another person's device) It can provide a method of operation.

According to various embodiments of the present disclosure, the electronic device includes at least one processor and memory, and the memory includes, when executed, the at least one processor receives registration information of at least one IoT device, and sends it to a server. , Transmitting an authentication information generation request including registration information of the at least one IoT device, receiving a first token from the server, and at least one second generated based on the registration information of the at least one IoT device Sending a request for authentication information including the first token to a server that generated at least one third token using a token, receiving authentication information including the at least one third token from the server, and Instructions for transmitting authentication information including the third token may be stored to the at least one IoT device.

According to various embodiments, a method of registering an IoT device includes: receiving registration information of at least one IoT device, and transmitting a request for generating authentication information including registration information of the at least one IoT device to a server , Receiving a first token from the server, to the server generating at least one third token using at least one second token generated based on the registration information of the at least one IoT device, the first Transmitting an authentication information request including a token, receiving authentication information including the at least one third token from the server, and receiving authentication information including the third token to the at least one IoT device It may include the operation of transmitting.

According to various embodiments, the server includes at least one processor and memory, and the memory includes, when executed, the at least one processor, from a first electronic device, including registration information of at least one IoT device Receiving a request for generating authentication information, generating a first token used for access to authentication information based on the request for generating authentication information, transmitting the first token to the first electronic device and the second electronic device, and , Upon receiving the first token from the second electronic device, transmits registration information of the at least one IoT device, and at least one obtained based on the registration information of the at least one IoT device from the second electronic device Receiving the second token, generating at least one third token corresponding to the at least one second token, and transmitting information to the first electronic device to inform that the at least one third token has been generated, Upon receiving the first token from the first electronic device, instructions for transmitting the at least one third token to the first electronic device may be stored.

According to various embodiments of the present disclosure, the electronic device includes a display, at least one processor and memory, and the memory includes, when executed, at least one of the number of at least one IoT device or the installation time of the at least one processor. Receiving registration information including, displaying on the display, receiving an input indicating confirmation of the registration information, and based on receipt of the input, corresponding to each of the at least one IoT device to an external server Instructions for generating at least one token generation, receiving the at least one token from the external server, and transmitting the received at least one token to an IoT server may be stored.

According to various embodiments, in an electronic device that is not registered as a user account, an IoT device may be registered as a user account without directly sharing authentication information of the user.

1 is a block diagram of an electronic device in a network environment, according to various embodiments.
2A and 2B are flowcharts for describing a process of registering at least one IoT device by a system according to various embodiments.
3 is a flowchart illustrating a process of registering at least one IoT device by a system according to various embodiments.
4 is a flowchart illustrating a process of registering at least one IoT device by an electronic device according to various embodiments.
5 is a diagram illustrating screens for receiving registration information of at least one IoT device according to various embodiments.
6 is a flowchart illustrating a process of registering at least one IoT device by an electronic device according to various embodiments.
7 is a diagram illustrating screens for receiving registration information of at least one IoT device according to various embodiments.
8 is a diagram illustrating screens for receiving registration information of at least one IoT device according to various embodiments.
9 is a diagram illustrating screens for receiving registration information of at least one IoT device according to various embodiments.
10 is a diagram illustrating screens illustrating a process in which at least one IoT device is registered according to various embodiments.
11 is a flowchart illustrating a process of registering at least one IoT device by a server according to various embodiments.

1 is a block diagram of an electronic device 101 in a network environment 100 according to various embodiments. Referring to FIG. 1, in the network environment 100, the electronic device 101 communicates with the electronic device 102 through the first network 198 (eg, a short-range wireless communication network), or the second network 199. It may communicate with the electronic device 104 or the server 108 through (eg, a remote wireless communication network). According to an embodiment, the electronic device 101 may communicate with the electronic device 104 through the server 108. According to one embodiment, the electronic device 101 includes a processor 120, a memory 130, an input device 150, an audio output device 155, a display device 160, an audio module 170, a sensor module ( 176), interface 177, haptic module 179, camera module 180, power management module 188, battery 189, communication module 190, subscriber identification module 196, or antenna module 197 ). In some embodiments, at least one of the components (for example, the display device 160 or the camera module 180) may be omitted or one or more other components may be added to the electronic device 101. In some embodiments, some of these components may be implemented in one integrated circuit. For example, the sensor module 176 (eg, fingerprint sensor, iris sensor, or illuminance sensor) may be implemented while embedded in the display device 160 (eg, display).

The processor 120, for example, executes software (eg, the program 140) to execute at least one other component (eg, hardware or software component) of the electronic device 101 connected to the processor 120. It can be controlled and can perform various data processing or operations. According to one embodiment, as at least a part of data processing or computation, the processor 120 may receive instructions or data received from other components (eg, the sensor module 176 or the communication module 190) in the volatile memory 132. Loaded into, process instructions or data stored in volatile memory 132, and store result data in non-volatile memory 134. According to one embodiment, the processor 120 includes a main processor 121 (eg, a central processing unit or an application processor), and an auxiliary processor 123 (eg, a graphics processing unit, an image signal processor) that can be operated independently or together. , Sensor hub processor, or communication processor). Additionally or alternatively, the coprocessor 123 may be set to use less power than the main processor 121, or to be specialized for a designated function. The coprocessor 123 may be implemented separately from the main processor 121 or as part of it.

The coprocessor 123 may replace, for example, the main processor 121 while the main processor 121 is in an inactive (eg, sleep) state, or the main processor 121 may be active (eg, execute an application) ) With the main processor 121 while in the state, at least one of the components of the electronic device 101 (for example, the display device 160, the sensor module 176, or the communication module 190) It can control at least some of the functions or states associated with. According to one embodiment, the coprocessor 123 (eg, image signal processor or communication processor) may be implemented as part of other functionally relevant components (eg, camera module 180 or communication module 190). have.

The memory 130 may store various data used by at least one component of the electronic device 101 (eg, the processor 120 or the sensor module 176). The data may include, for example, software (eg, the program 140) and input data or output data for commands related thereto. The memory 130 may include a volatile memory 132 or a non-volatile memory 134.

The program 140 may be stored as software in the memory 130, and may include, for example, an operating system 142, middleware 144, or an application 146.

The input device 150 may receive commands or data to be used for components (eg, the processor 120) of the electronic device 101 from outside (eg, a user) of the electronic device 101. The input device 150 may include, for example, a microphone, mouse, keyboard, or digital pen (eg, a stylus pen).

The audio output device 155 may output an audio signal to the outside of the electronic device 101. The audio output device 155 may include, for example, a speaker or a receiver. The speaker can be used for general purposes such as multimedia playback or recording playback, and the receiver can be used to receive an incoming call. According to one embodiment, the receiver may be implemented separately from, or as part of, the speaker.

The display device 160 may visually provide information to the outside of the electronic device 101 (eg, a user). The display device 160 may include, for example, a display, a hologram device, or a projector and a control circuit for controlling the device. According to an embodiment, the display device 160 may include a touch circuitry configured to sense a touch, or a sensor circuit configured to measure the strength of the force generated by the touch (eg, a pressure sensor). have.

The audio module 170 may convert sound into an electrical signal, or vice versa. According to one embodiment, the audio module 170 acquires sound through the input device 150, or an external electronic device (eg, directly or wirelessly connected to the sound output device 155 or the electronic device 101) Sound may be output through the electronic device 102 (eg, speakers or headphones).

The sensor module 176 detects an operating state (eg, power or temperature) of the electronic device 101 or an external environmental state (eg, a user state), and generates an electrical signal or data value corresponding to the detected state can do. According to one embodiment, the sensor module 176 includes, for example, a gesture sensor, a gyro sensor, a barometric pressure sensor, a magnetic sensor, an acceleration sensor, a grip sensor, a proximity sensor, a color sensor, an infrared (IR) sensor, a biological sensor, It may include a temperature sensor, a humidity sensor, or an illuminance sensor.

The interface 177 may support one or more designated protocols that can be used for the electronic device 101 to directly or wirelessly connect to an external electronic device (eg, the electronic device 102). According to an embodiment, the interface 177 may include, for example, a high definition multimedia interface (HDMI), a universal serial bus (USB) interface, an SD card interface, or an audio interface.

The connection terminal 178 may include a connector through which the electronic device 101 can be physically connected to an external electronic device (eg, the electronic device 102 ). According to an embodiment, the connection terminal 178 may include, for example, an HDMI connector, a USB connector, an SD card connector, or an audio connector (eg, a headphone connector).

The haptic module 179 may convert electrical signals into mechanical stimuli (eg, vibration or movement) or electrical stimuli that the user can perceive through tactile or motor sensations. According to one embodiment, the haptic module 179 may include, for example, a motor, a piezoelectric element, or an electrical stimulation device.

The camera module 180 may capture still images and videos. According to one embodiment, the camera module 180 may include one or more lenses, image sensors, image signal processors, or flashes.

The power management module 188 may manage power supplied to the electronic device 101. According to one embodiment, the power management module 388 may be implemented, for example, as at least part of a power management integrated circuit (PMIC).

The battery 189 may supply power to at least one component of the electronic device 101. According to one embodiment, the battery 189 may include, for example, a non-rechargeable primary cell, a rechargeable secondary cell, or a fuel cell.

The communication module 190 is a direct (eg, wired) communication channel or a wireless communication channel between the electronic device 101 and an external electronic device (eg, the electronic device 102, the electronic device 104, or the server 108). It can support establishing and performing communication through the established communication channel. The communication module 190 operates independently of the processor 120 (eg, an application processor) and may include one or more communication processors supporting direct (eg, wired) communication or wireless communication. According to one embodiment, the communication module 190 is a wireless communication module 192 (eg, a cellular communication module, a short-range wireless communication module, or a global navigation satellite system (GNSS) communication module) or a wired communication module 194 (eg : Local area network (LAN) communication module, or power line communication module. Corresponding communication module among these communication modules includes a first network 198 (for example, a short-range communication network such as Bluetooth, WiFi direct, or infrared data association (IrDA)) or a second network 199 (for example, a cellular network, the Internet, or It may communicate with external electronic devices through a computer network (eg, a telecommunication network such as a LAN or WAN). These various types of communication modules may be integrated into a single component (eg, a single chip), or may be implemented as a plurality of separate components (eg, multiple chips). The wireless communication module 192 uses a subscriber information (eg, International Mobile Subscriber Identifier (IMSI)) stored in the subscriber identification module 196 within a communication network such as the first network 198 or the second network 199. The electronic device 101 can be identified and authenticated.

The antenna module 197 may transmit a signal or power to the outside (eg, an external electronic device) or receive it from the outside. According to one embodiment, the antenna module may include a single antenna including a conductor formed on a substrate (eg, a PCB) or a radiator made of a conductive pattern. According to an embodiment, the antenna module 197 may include a plurality of antennas. In this case, at least one antenna suitable for a communication method used in a communication network, such as the first network 198 or the second network 199, is transmitted from the plurality of antennas by, for example, the communication module 190. Can be selected. The signal or power may be transmitted or received between the communication module 190 and an external electronic device through the at least one selected antenna. According to some embodiments, other components (eg, RFIC) other than the radiator may be additionally formed as part of the antenna module 197.

At least some of the components are connected to each other through a communication method between peripheral devices (for example, a bus, a general purpose input and output (GPIO), a serial peripheral interface (SPI), or a mobile industry processor interface (MIPI)). Ex: command or data) can be exchanged with each other.

According to an embodiment, the command or data may be transmitted or received between the electronic device 101 and the external electronic device 104 through the server 108 connected to the second network 199. Each of the electronic devices 102 and 104 may be the same or a different type of device from the electronic device 101. According to an embodiment, all or some of the operations performed on the electronic device 101 may be performed on one or more external devices of the external electronic devices 102, 104, or 108. For example, when the electronic device 101 needs to perform a certain function or service automatically or in response to a request from a user or another device, the electronic device 101 can execute the function or service itself. In addition or in addition, one or more external electronic devices may be requested to perform at least a portion of the function or the service. The one or more external electronic devices receiving the request may execute at least a part of the requested function or service, or an additional function or service related to the request, and deliver the result of the execution to the electronic device 101. The electronic device 101 may process the result, as it is or additionally, and provide it as at least part of a response to the request. To this end, cloud computing, distributed computing, or client-server computing technology can be used, for example.

2A is a flowchart illustrating a process of registering at least one IoT device by a system according to various embodiments. For example, the first server 108 may be a server managing IoT devices, and the second server 200 may be a server managing user accounts. Depending on the implementation, the first server 108 and the second server 200 may be physically or logically divided. Alternatively, at least a portion of the first server 108 and the second server 200 may be implemented to be physically or logically integrated.

According to various embodiments, the first electronic device 101 (eg, the processor 120) may receive registration information of at least one IoT device in operation 201. Acquiring the registration information by the electronic device 101 may mean, for example, receiving registration information through the input device 150 included in the electronic device 101. For example, the registration information of the at least one IoT device may include information on the number of IoT devices to be registered in the first server 108, information on the time to register the IoT device, or the second electronic device 104. It may be information regarding a type (for example, QR code, E-mail) providing registration information. For example, the first electronic device 101 may be an electronic device possessed by a person who wants to install an IoT device. The second electronic device 104 may be an electronic device possessed by a person who requests or allows the installation of the IoT device.

According to various embodiments of the present disclosure, in operation 203, the electronic device 101 may transmit a request for generating authentication information including registration information of at least one IoT device to the first server 108.

According to various embodiments, the first server 108 (eg, the server 108) may generate a first token at operation 205. When a request for generating authentication information is received from the electronic device 101, the server 108 may generate a storage for storing authentication information, and generate a first token used for access to the generated storage. The first token may be used in the process of checking the authority for access to authentication information from another electronic device in the future, and there is no limitation on the method of generating the first token.

According to various embodiments, the first server 108 may transmit the first token to the first electronic device 101 in operation 207.

According to various embodiments, the first server 108 may transmit the first token to the second electronic device 104 in operation 209. For example, when an application providing an IoT account-related service is installed in the second electronic device 104, the first server 108 is in the form of a notification of the application providing the IoT account-related service, The first token can be transmitted to the second electronic device 104. Alternatively, the first server 108 may transmit the first token in the form of an email. For another example, if the type of providing registration information is set to QR code, operation 209 may be omitted, and the second electronic device 104 reads the QR code displayed on the first electronic device 101 (eg : Shooting) to receive the first token.

According to various embodiments of the present disclosure, in operation 211, the second electronic device 104 may transmit a request for registration information of at least one IoT device including the first token.

According to various embodiments of the present disclosure, in operation 213, the first server 108 may transmit registration information of at least one IoT device to the second electronic device 104. For example, upon receiving a request for registration information of at least one IoT device from the second electronic device 104, the first server 108 generates a first token included in the received registration information request in operation 205. If it matches the first token, registration information of at least one IoT device may be transmitted. Accordingly, only the electronic device to which the first server 108 has transmitted the first token can query the registration information of the IoT device.

According to various embodiments, the second electronic device 104 may acquire at least one second token through the second server 200 based on the registration information of the at least one IoT device in operation 215. . For example, the registration information of at least one IoT device received from the first server 108 may include information on the number of IoT devices to be registered, and the second electronic device 104 is IoT to be registered. The second token can be obtained as many as the number of devices. Each second token may consist of an access token and a refresh token. In various embodiments, the second electronic device 104 may display a screen including at least a part of registration information. The second electronic device 104 may acquire a command for generating the second token, and may transmit a request for generating the second token to the second server 200 correspondingly. The request to generate the second token may include information on the number of IoT devices to be installed, for example. In this case, the second server 200 may generate the second token in the corresponding number based on the information on the number of IoT devices to be installed. The second token may be at least one, and may correspond to each of the at least one IoT device.

According to various embodiments, the second electronic device 104 may transmit the obtained at least one second token in operation 217.

According to various embodiments, the first server 108 may store at least one second token and generate at least one third token corresponding to the at least one second token in one operation 219. The at least one third token generated by the first server 108 corresponds to the at least one second token generated by the second server 200 in a one-to-one correspondence, and is different from the second token. Accordingly, at least one third token is valid only in the first server 108, and may not be valid in a server other than the first server 108. For example, the third token may be composed of an access token' (refresh token') and an access token (refresh token) corresponding to the access token and the refresh token of the second token. For example, in an operation after operation 219, the third token may be temporary authentication information that is used for IoT registration and expires after registration. Access token' can be used to indicate a temporary token generated corresponding to the generated token.

According to various embodiments, the first server 108 may transmit information indicating that authentication information has been generated in operation 221. For example, the authentication information may be at least one third token.

According to various embodiments of the present disclosure, in operation 223, the first electronic device 101 may transmit a request for authentication information including the first token. The first token is a token received from the first server 108 in operation 207, and may be used to confirm an authority to query authentication information.

According to various embodiments, the first server 108 may transmit authentication information including at least one third token in operation 225. When the first token included in the authentication information request received from the first electronic device 101 matches the first token generated by the first server 108, the first server 108 is the first electronic device 101 ). Accordingly, only the electronic device to which the first server 108 has transmitted the first token can receive authentication information.

2B is a flowchart illustrating a process of registering at least one IoT device by a system according to various embodiments. For example, the first server 108 may be a server managing IoT devices, and the second server 200 may be a server managing user accounts.

According to various embodiments, the first electronic device 101 (eg, the processor 120) may obtain registration information of at least one IoT device in operation 231. Operation 231 may be operation 201 of FIG. 2A.

According to various embodiments, the first electronic device may transmit an authentication information generation request including registration information of at least one IoT device in operation 233. Operation 233 may be operation 203 of FIG. 2A.

According to various embodiments, the first server 108 (eg, the server 108) may generate a first token in operation 235. Operation 235 may be operation 205 of FIG. 2A.

According to various embodiments, the first server 108 may transmit the first token to the first electronic device 101 in operation 237. Operation 237 may be operation 207 of FIG. 2A.

According to various embodiments, the first server 108 may transmit the first token to the second electronic device 104 (eg, the electronic device 104) in operation 239. For example, when the registration information received in operation 231 includes an E-mail address, the first server 108 includes an E-mail and a web address including a web address for accessing the second server 200. 1 Token can be sent. For another example, when the registration information received in operation 231 includes the phone number of the user device, the first server 108 includes an SMS and a web address including a web address for accessing the second server 200. 1 Token can be sent.

According to various embodiments, the second electronic device 104, in operation 241, checks registration information of at least one IoT device using the first token and receives ID/PASSWORD for the second server 200 can do. For example, the second electronic device 104 may check registration information of at least one IoT device according to a user input for selecting a web address included in E-mail or SMS. Then, the second electronic device 104 may receive a user input for inputting an ID/PASSWORD to log in to the account of the second server 200 in the web address.

According to various embodiments of the present disclosure, in operation 243, based on the ID/PASSWORD for the second server 200 and the registration information of the at least one IoT device, in operation 243, the first server 108 through the second server 200 At least one second token may be obtained and stored. For example, when the ID/PASSWORD input to the second electronic device 104 is logged in to the account of the second server 200 in operation 241, the first server 108 is based on at least one IoT device registration information. One second token can be obtained. For example, the registration information of at least one IoT device may include information on the number of IoT devices to be registered, and the first server 108 obtains the second token as many as the number of IoT devices to be registered. Can be. Each second token may consist of an access token and a refresh token.

According to various embodiments, the first server 108 may generate at least one third token corresponding to the at least one second token in one-to-one operation 245. The at least one third token generated by the first server 108 corresponds to the at least one second token generated by the second server 200 in a one-to-one correspondence, and is different from the second token. Accordingly, at least one third token is valid only in the first server 108, and may not be valid in a server other than the first server 108. For example, the third token may be composed of an access token' (refresh token') and an access token (refresh token) corresponding to the access token and the refresh token of the second token.

According to various embodiments, the first server 108 may transmit information indicating that authentication information has been generated in operation 247. Operation 247 may be operation 221 of FIG. 2A.

According to various embodiments of the present disclosure, in operation 249, the first electronic device 101 may transmit an authentication information request including the first token. Operation 249 may be operation 223 of FIG. 2A.

According to various embodiments, the first server 108 may transmit authentication information including at least one third token in operation 251. Operation 251 may be operation 225 of FIG. 2A.

3 is a flowchart illustrating a process of registering at least one IoT device by a system according to various embodiments. Operations 301 to 311 of FIG. 3 may be performed after operation 225 of FIG. 2A or may be performed after operation 251 of FIG. 2B.

According to various embodiments, the first electronic device 101 (eg, the processor 120) may transmit authentication information including the third token in operation 301. Authentication information including one third token of at least one third token received from the first server 108 may be transmitted to one IoT device 300.

According to various embodiments of the present disclosure, in operation 303, the IoT device 300 uses the third token included in the authentication information received from the first electronic device 101 to transmit the IoT device 300 to the first server 108. You can register at

According to various embodiments, the first server 108 may expire the third token at operation 305.

According to various embodiments, the IoT device 300 may transmit a request for a new token at operation 307. For example, since the token possessed by the IoT device 300 may be registered in the first server only when the third token expires in operation 305, a request for a new token for re-registration may be transmitted. .

According to various embodiments, the first server 108 may transmit a second token corresponding to the third token in operation 309. For example, since the third token was created to correspond one-to-one with the second token (e.g., in operation 219 of FIG. 2A or operation 245 of FIG. 2B), the first server 108 is configured to correspond to the third token. 2 Tokens can be selected and transmitted.

According to various embodiments, the IoT device 300 may register the IoT device 300 with the first server using the second token in operation 311.

According to various embodiments, the first server 108 may delete the stored second and third tokens in operation 311. By deleting the second token and the third token stored in the first server 108, security of the user's authentication information can be enhanced.

3 is illustrated as the first electronic device 101 transmits authentication information including a third token to one IoT device 300, but this is merely for convenience of description, and the IoT device to be installed is In the case of multiple individuals, the first electronic device 101 may transmit each of the plurality of third tokens to each of the plurality of IoT devices. Here, each of the plurality of third tokens may be different.

4 is a flowchart illustrating a process of registering at least one IoT device by an electronic device according to various embodiments. The embodiment of FIG. 4 will be described in more detail with reference to FIG. 5. 5 is a diagram illustrating a screen for receiving registration information of at least one IoT device according to various embodiments.

According to various embodiments, the electronic device 101 (eg, the processor 120) may obtain registration information of at least one IoT device in operation 401. Acquiring the registration information by the electronic device 101 may mean, for example, receiving registration information through the input device 150 included in the electronic device 101. For example, as in FIG. 5, the electronic device 101 includes a QR code 511-1, an Application 511-3, an SMS 511-5, or an E-mail 511-7. Registration information may be input through a UI for receiving the notification method 511, the number of installations 513, and the installation time 515. For example, selecting the QR code 511-1 among the notification methods 511 means that an external electronic device (for example, the second electronic device 104 of FIG. 2B) scans the QR code to receive the first token. By receiving, it may mean selecting a method of receiving registration information. For example, selecting the Application 511-3 among the notification methods 511 may mean that the external electronic device selects a method of receiving registration information by receiving a notification of an application including the first token. . For example, selecting the SMS 511-5 among the notification methods 511 may mean that the external electronic device selects a method of receiving registration information by receiving an SMS including the first token. For example, selecting the E-mail 511-7 among the notification methods 511 means that the external electronic device selects a method of receiving registration information by receiving an E-mail including the first token. Can be. For example, the number of installations 513 may mean the number of at least one IoT device that is to be registered with a server (eg, the first server in FIG. 2A). The electronic device 101 may request and receive authentication information corresponding to the number of installations. For example, selecting the installation time 515 may mean determining an effective time of the third token transmitted to the IoT device in operation 411. For example, if the installation time is 12:00 on September 1, the third token may be valid until 13:00 on September 1.

Referring back to FIG. 4, according to various embodiments, in operation 403, the electronic device 101 transmits registration information of at least one IoT device to a server (eg, the first server 108 in FIG. 2A ). A request for generating authentication information may be transmitted.

According to various embodiments, the electronic device 101 may receive the first token from the server in operation 405. For example, the first token is a token used to query authentication information stored in the server, and may be generated in the server.

According to various embodiments of the present disclosure, in operation 407, the electronic device 101 transmits to the server generating the at least one third token by using at least one second token generated based on the registration information of the at least one IoT device. , A request for authentication information including the first token may be transmitted. Since the first token has the authority to query the authentication information, the electronic device 101 can cause the request for authentication information to include the first token.

According to various embodiments of the present disclosure, in operation 409, the electronic device 101 may receive authentication information including at least one third token from the server. For example, the at least one third token may be a token generated to correspond one-to-one with the at least one second token. Accordingly, the third token can function as the second token on the server.

According to various embodiments of the present disclosure, in operation 411, the electronic device 101 may transmit authentication information including a third token to at least one IoT device. For example, the electronic device 101 may transmit authentication information including at least one third token among at least one third token to each of the at least one IoT device.

6 is a flowchart illustrating a process of registering at least one IoT device by an electronic device according to various embodiments. The embodiment of FIG. 6 will be described in more detail with reference to FIG. 7. 7 is a diagram illustrating screens for receiving registration information of at least one IoT device according to various embodiments.

According to various embodiments of the present disclosure, the electronic device 104 (eg, the electronic device 104) receives, at operation 601, registration information including at least one of the number of at least one IoT device or the installation time, on the display. Can be displayed. For example, when an application related to an IoT account is installed in the electronic device 104, the electronic device 104 may receive and display registration information using the first token received with the notification of the corresponding application. have. For example, if an application related to an IoT account is not installed in the electronic device 104, the electronic device 104 may receive and display registration information using the first token obtained by scanning the QR code. .

For example, as shown in FIG. 7A, the electronic device 104 scans (703) (or photographs) the QR code 701 displayed on the electronic device 101 to obtain a first token. Can be. Then, the electronic device 104 may receive registration information using the obtained first token. When receiving the registration information, the electronic device 104 may display information 711 indicating the number of IoT devices and information 713 indicating the installation time of the IoT device, as shown in FIG. 7( b ). have.

In FIG. 7, although the information 713 indicating the installation time is shown as indicating a specific time, this is merely exemplary, and the first electronic device 101 and the second electronic device 104 are registered indicating a time period. Information can also be transmitted or managed. The time period of the registration information may also be associated with the validity period of the third token, for example.

Referring back to FIG. 6, in operation 603, according to various embodiments, the electronic device 104 may receive an input indicating confirmation of registration information. For example, as shown in FIG. 7(b), while displaying the registration information 711, 713 of at least one IoT device, the ID 715 and the PASSWORD 717 for logging in to the user account may be input. have.

Referring back to FIG. 6, in step 605, according to various embodiments, the electronic device 104 may provide at least one IoT to an external server (eg, the second server 300 of FIG. 3) based on the reception of the input. At least one token generation request corresponding to each device may be transmitted. For example, the external server may be a server that manages a user account, and as shown in FIG. 7(b), receives an ID 715 and PASSWORD 717 for logging in a user account and requests a token generation. Can transmit.

Referring back to FIG. 6, in step 607, according to various embodiments, the electronic device 104 may receive at least one token from an external server. For example, as shown in FIG. 7(b), if there are five IoT devices to be installed and the installation time is 9/1, 12:00, the electronic device 1043 may receive 9/1, 12 from an external server: After the set time after 00, 5 tokens that expire can be received. The 5 tokens can be composed of an access token and a refresh token, respectively, and can be different.

Referring back to FIG. 6, in operation 609, according to various embodiments, the electronic device 104 may transmit the received at least one token to the IoT server (eg, the first server 108 in FIG. 2A). .

Meanwhile, in FIGS. 6 and 7, it has been described that the electronic device 104 requests generation of a token from an external server, receives a token, and transmits the token to an IoT server. However, according to various embodiments, the IoT server displays the electronic device 104 ) To send a request for token generation to an external server and receive a token. Specifically, when the application related to the IoT account is not installed in the electronic device 104, the IoT server may acquire a token by sending SMS or E-mail to the electronic device 104.

For example, FIG. 8 shows an embodiment in which the IoT server acquires a token through SMS transmitted to the electronic device 104. 8(a), the electronic device 104 may receive and display an SMS including a web address 801 for a server capable of logging in a user account, and the SMS generated by the IoT server It may include a first token. Then, the electronic device 104 may transmit a registration information request using the first token to the IoT server according to a user input for selecting the web address 801. Then, as shown in FIG. 8(b), the electronic device 104 may display information 811 indicating the number of IoT devices and information 813 indicating the installation time of the IoT device on the display. Then, when a user input for inputting an ID 815 and a PASSWORD 817 for logging in a user account in the electronic device 104 is input, the IoT device transmits a request for token generation to an external server, and at least one token Can receive. That is, when the user account is logged in at the web address 801 transmitted through the SMS transmitted by the IoT server, the IoT server may transmit a token generation request to the external server and receive the token. Then, the electronic device 104, according to the user input to enter the ID (815) and PASSWORD (817) for logging in the user account, as shown in Figure 8 (c), information indicating that the reservation is completed (821) Can be displayed on the display.

For another example, FIG. 9 illustrates an embodiment in which the IoT server acquires a token through E-mail transmitted to the electronic device 104. As shown in FIG. 9(a), the electronic device 104 may receive and display an E-mail including an icon 901 capable of moving to a web page for logging in a user account, and the E-mail It may include a first token generated in the IoT server. Then, the electronic device 104 may transmit a registration information request using the first token to the IoT server according to a user input for selecting the icon 901. Then, as shown in FIG. 9(b), the electronic device 104 may display information 911 indicating the number of IoT devices and information 913 indicating the installation time of the IoT devices on the display. Then, when a user input for entering an ID 915 and a PASSWORD 917 for logging in a user account in the electronic device 104 is input, the IoT device transmits a request for token generation to an external server, and at least one token Can receive. That is, when the user account is logged in from the web address delivered through the E-mail transmitted by the IoT server, the IoT server may transmit a token generation request to the external server and receive the token. Then, the electronic device 104, according to the user input to enter the ID (915) and PASSWORD (917) for logging in the user account, as shown in Figure 9 (c), information indicating that the reservation is complete (921) Can be displayed on the display.

10 is a diagram illustrating screens illustrating a process in which at least one IoT device is registered according to various embodiments. For example, the electronic device 101 (eg, the first electronic device 101 of FIG. 2A) is assumed to be an electronic device that is not registered with a user account, and the electronic device 104 (eg, FIG. 2A) The second electronic device 104 of may be assumed to be an electronic device registered with a user account. Although the electronic device 101 is not registered as a user account, the IoT device may be registered as a user account using temporary authentication information received from the IoT server (for example, the first server 108 in FIG. 2B ). . Specifically, the IoT server may acquire authentication information from a server associated with a user account (for example, the second server 200 of FIG. 2A ), and generate temporary authentication information corresponding one-to-one with the obtained authentication information, The generated temporary authentication information may be transmitted to the electronic device 101. d For example, the authentication information may be at least one second token, and the temporary authentication information may be at least one third token. Since the electronic device 101 can register the IoT device with a user account using temporary authentication information, the user's authentication information may not be transmitted to the electronic device 101. For example, FIG. 10( a) may be a UI in which the electronic device 101 that is not registered as a user account registers an IoT device using temporary authentication information. FIG. 10( b) may be a UI indicating a process in which an IoT device is registered as a user account in the electronic device 104 registered as a user account. When the user account registration of the IoT device is completed, as shown in FIGS. 10(c) and 10(d), both the electronic device 101 not registered as a user account and the electronic device 104 registered as a user account You can check the registration status of the registered IoT device. The electronic device 104 may provide a UI that can add, delete, or change the function of the registered IoT device.

11 is a flowchart illustrating a process of registering at least one IoT device by a server according to various embodiments.

According to various embodiments, the server 108 (eg, the server 108), in operation 1101, from the first electronic device (eg, the first electronic device 101 of FIG. 2A ), the at least one IoT device A request for generating authentication information including registration information may be received. For example, the registration information of at least one IoT device may include an effective time of a token to be generated in the server.

According to various embodiments of the present disclosure, in operation 1103, the server 108 generates a first token used for access to authentication information based on a request for generating authentication information, so that the first token is transmitted to the first electronic device 101 and It can be transmitted to the second electronic device (eg, the second electronic device 104 of FIG. 2A ). Meanwhile, when the first electronic device 101 receives the first token and delivers it to the second electronic device 104, the server 108 may not transmit the first token to the second electronic device 104. .

According to various embodiments, when the first token is received from the second electronic device 104, in operation 1105, the server 108 may transmit registration information of at least one IoT device. For example, the server 108 registers at least one IoT device when the first token received from the second electronic device 104 matches the first token generated by the server 108 in operation 1103. Information can be transmitted. Accordingly, only the electronic device that receives the first token generated by the server 108 can query the registration information of at least one IoT device.

According to various embodiments, the server 108 may receive at least one second token obtained from the second electronic device 104 based on the registration information of the at least one IoT device in operation 1107. At least one second token may be generated in a server associated with a user account, and may be generated as many as the number of IoT devices included in the registration information. For example, when the second electronic device 104 receives registration information as a QR code or notification of an application related to a user account, the second electronic device 104 may receive a second token. Meanwhile, in operation 1107, it has been described that the second token is received from the second electronic device 104, but the server 108 may directly receive the second token from the server associated with the user account. For example, the server 108 transmits the web address of the server associated with the user account to the second electronic device 104 using SMS or E-mail, and the second electronic device 104 accesses the web address When logging in to a user account, the server 108 may receive at least one second token directly from a server associated with the user account.

According to various embodiments of the present disclosure, in operation 1109, the server 108 generates at least one third token corresponding to the at least one second token so that the first electronic device 101 has at least one third token. Information indicating that it has been generated may be transmitted. Since the server 108 may not transmit the at least one second token to the electronic device by generating at least one third token that is in one-to-one correspondence with the at least one second token, security of the user account may be enhanced.

According to various embodiments, when the first token is received from the first electronic device 101 in operation 1111, the server 108 may transmit at least one third token to the first electronic device 101. The server 108 transmits information indicating that the third token has been generated, and upon receiving the first token, transmits the third token, thereby identifying whether the first electronic device 101 is authorized to query the third token can do.

Accordingly, at least one IoT device may be registered in the first electronic device 101 without transmitting authentication information (ie, the second token) generated by the server associated with the user account to the first electronic device 101. .

According to various embodiments, the electronic device 101 includes at least one processor (eg, the processor 120) and a memory (eg, the memory 130), and the memory (eg, the memory 130) is , When executed, the at least one processor (eg, the processor 120) acquires registration information of at least one IoT device, and includes, to the server 108, registration information of the at least one IoT device Sending a request for generating authentication information, receiving a first token from the server, and generating at least one third token using at least one second token generated based on the registration information of the at least one IoT device Sending a request for authentication information including the first token to the server 108, receiving authentication information including the at least one third token from the server, and the third to the at least one IoT device Instructions for transmitting authentication information including a token may be stored.

According to various embodiments, the registration information of the at least one IoT device may include the number of the at least one IoT device, a type by which the server transmits the first token to at least one of the external electronic device or the electronic device, or It may include information for setting the validity time of the at least one third token.

According to various embodiments, the type of transmitting the first token may be any one of a QR code, an E-mail, or a text message (SMS).

According to various embodiments, the external electronic device 104 receives the first token from the server, receives the registration information of the at least one IoT device using the first token, and the at least one The at least one second token may be obtained based on the registration information of the IoT device, and the at least one third token may correspond one-to-one with at least one second token obtained from the external electronic device.

According to various embodiments, the at least one second token may be generated by the number of the at least one IoT device.

According to various embodiments, the at least one second token may include an access token and a refresh token.

According to various embodiments, the first token may be a token having the authority to query the at least one third token.

According to various embodiments, when the registration is performed in at least one IoT device that has received the at least one third token, the at least one third token may expire.

In a method of registering an IoT device in the electronic device 101 according to various embodiments, an operation of obtaining registration information of at least one IoT device, authentication to a server, including registration information of the at least one IoT device Transmitting an information generation request, receiving a first token from the server, generating at least one third token using at least one second token generated based on the registration information of the at least one IoT device Sending a request for authentication information including the first token to a server, receiving authentication information including the at least one third token from the server, and sending the third token to the at least one IoT device And transmitting the included authentication information.

According to various embodiments, the registration information of the at least one IoT device may include the number of the at least one IoT device, a type by which the server transmits the first token to at least one of the external electronic device or the electronic device, or It may include information for setting the validity time of the at least one third token.

According to various embodiments, the type of transmitting the first token may be any one of a QR code, an E-mail, or a text message (SMS).

According to various embodiments, the external electronic device 104 receives the first token from the server 108, receives registration information of the at least one IoT device using the first token, and the The at least one second token may be obtained based on the registration information of at least one IoT device, and the at least one third token may correspond one-to-one with at least one second token obtained from the external electronic device.

According to various embodiments, the at least one second token may be generated by the number of the at least one IoT device.

According to various embodiments, the third token may include an access token and a refresh token.

According to various embodiments, the first token may be a token having the authority to query the at least one third token.

According to various embodiments, when the registration is performed in at least one IoT device that has received the at least one third token, the at least one third token may expire.

According to various embodiments of the present disclosure, the server 108 includes at least one processor and memory (eg, the memory 130), and the memory includes, when executed, the at least one processor, the first electronic device ( Example: receiving an authentication information generation request including registration information of at least one IoT device from the electronic device 101, and generating a first token used for access to authentication information based on the authentication information generation request Thus, the first token is transmitted to the first electronic device (for example, the electronic device 101) and the second electronic device (for example, the electronic device 104), and the second electronic device (for example, the electronic device (for example, 104), upon receiving the first token, transmits registration information of the at least one IoT device, and transmits registration information of the at least one IoT device from the second electronic device (for example, the electronic device 104). Receiving at least one second token obtained based on, and generating at least one third token corresponding to the at least one second token, to the first electronic device (eg, the electronic device 101) When the first electronic device (for example, the electronic device 101) receives the first token from the first electronic device (for example, the electronic device 101), the first electronic device (for example, the electronic device 101) )) can store instructions for transmitting the at least one third token.

According to various embodiments of the present disclosure, when the instructions receive a registration request including a third token from an IoT device (eg, IoT device 300), the IoT device (eg, IoT device 300) receives the server ( 108), expire the third token, receive a token issuance request from the IoT device (eg, IoT device 300), and transmit a second token corresponding to the third token.

According to various embodiments, the registration information of the at least one IoT device may include the number of the at least one IoT device, the server being the first electronic device (eg, the electronic device 101), or a second electronic device (eg. : A type for transmitting the first token to at least one of the electronic devices 104, or information for setting an effective time of the at least one third token.

According to various embodiments, the type of transmitting the first token may be any one of a QR code, an E-mail, or a text message (SMS).

According to various embodiments, an electronic device (eg, the electronic device 104) includes a display (eg, the display device 160), at least one processor (eg, the processor 120), and a memory (eg, the memory 130) )), the memory (e.g., memory 130), when executed, the at least one processor (e.g., processor 120), at least one of the number or installation time of at least one IoT device Receiving the registration information including, displays on the display (for example, the display device 160), receives an input indicating confirmation of the registration information, and based on the reception of the input, an external server (eg : Transmits a request for generating at least one token corresponding to each of the at least one IoT device to a server 108, receives the at least one token from the external server (eg, server 108 ), Instructions for transmitting the received at least one token to an IoT server may be stored.

An electronic device according to various embodiments disclosed in the present disclosure may be various types of devices. The electronic device may include, for example, a portable communication device (eg, a smart phone), a computer device, a portable multimedia device, a portable medical device, a camera, a wearable device, or a home appliance device. The electronic device according to the embodiment of the present document is not limited to the above-described devices.

It should be understood that various embodiments of the document and terms used therein are not intended to limit the technical features described in this document to specific embodiments, and include various modifications, equivalents, or substitutes of the embodiment. In connection with the description of the drawings, similar reference numerals may be used for similar or related components. A singular form of a noun corresponding to an item may include one or more of the items, unless the context clearly indicates otherwise. In this document, "A or B", "at least one of A and B", "at least one of A or B," "A, B or C," "at least one of A, B and C," and "A Each of the phrases such as "at least one of,, B, or C" may include any one of the items listed together in the corresponding phrase of the phrases, or all possible combinations thereof. Terms such as "first", "second", or "first" or "second" can be used to simply distinguish the component from other components, and to separate the components from other aspects (eg, importance or Order). Any (eg, first) component is referred to as “coupled” or “connected” to another (eg, second) component, with or without the term “functionally” or “communically” When mentioned, it means that any of the above components can be connected directly to the other components (eg, by wire), wirelessly, or through a third component.

As used herein, the term "module" may include units implemented in hardware, software, or firmware, and may be used interchangeably with terms such as logic, logic blocks, components, or circuits. The module may be an integrally configured component or a minimum unit of the component or a part thereof performing one or more functions. For example, according to an embodiment, the module may be implemented in the form of an application-specific integrated circuit (ASIC).

Various embodiments of the present disclosure may include one or more instructions stored in a storage medium (eg, internal memory 136 or external memory 138) readable by a machine (eg, electronic device 101). It may be implemented as software (e.g., program 140) that includes. For example, a processor (eg, processor 120) of a device (eg, electronic device 101) may call and execute at least one of one or more commands stored from a storage medium. This enables the device to be operated to perform at least one function according to the at least one command called. The one or more instructions may include code generated by a compiler or code executable by an interpreter. The storage medium readable by the device may be provided in the form of a non-transitory storage medium. Here, “non-transitory” only means that the storage medium is a tangible device and does not contain a signal (eg, electromagnetic waves), and this term is used when data is stored semi-permanently. It does not distinguish between temporary storage cases.

According to one embodiment, a method according to various embodiments disclosed in this document may be provided as being included in a computer program product. Computer program products are products that can be traded between sellers and buyers. The computer program product may be distributed in the form of a device-readable storage medium (eg compact disc read only memory (CD-ROM)), or through an application store (eg Play StoreTM) or two user devices ( For example, it can be distributed directly (e.g., downloaded or uploaded) between smartphones). In the case of online distribution, at least a portion of the computer program product may be stored at least temporarily on a storage medium readable by a device such as a memory of a manufacturer's server, an application store's server, or a relay server, or may be temporarily generated.

According to various embodiments, each component (eg, module or program) of the above-described components may include a singular or a plurality of entities. According to various embodiments, one or more components or operations of the above-described corresponding components may be omitted, or one or more other components or operations may be added. Alternatively or additionally, a plurality of components (eg, modules or programs) may be integrated into one component. In this case, the integrated component may perform one or more functions of each component of the plurality of components the same or similar to that performed by the corresponding component among the plurality of components prior to the integration. . According to various embodiments, operations performed by a module, program, or other component may be executed sequentially, in parallel, repeatedly, or heuristically, or one or more of the operations may be executed in a different order, or omitted Or, one or more other actions can be added.

Claims (21)

In the electronic device,
At least one processor; And
Memory; wherein the memory includes, when executed, the at least one processor,
Obtain registration information of at least one IoT device,
To the server, transmits a request for generating authentication information including registration information of the at least one IoT device,
Receiving a first token from the server,
Send to the server generating at least one third token using at least one second token generated based on the registration information of the at least one IoT device, the authentication information request including the first token,
Receiving authentication information including the at least one third token from the server, and
An electronic device that stores instructions to transmit authentication information including the third token to the at least one IoT device.
According to claim 1,
The registration information of the at least one IoT device may include the number of the at least one IoT device, a type in which the server transmits the first token to at least one of the external electronic device or the electronic device, or the at least one third An electronic device comprising information for setting an effective time of a token.
According to claim 2,
The type of transmitting the first token is one of a QR code, an email (E-mail), or a text message (SMS).
According to claim 2,
The external electronic device,
Receiving the first token from the server, receiving registration information of the at least one IoT device using the first token,
Acquiring at least one second token based on the registration information of the at least one IoT device,
The at least one third token, the electronic device characterized in that the one-to-one correspondence with the at least one second token obtained from the external electronic device.
The method of claim 4,
The at least one second token is generated as many as the number of the at least one IoT device.
The method of claim 4,
And the at least one second token includes an access token and a refresh token.
According to claim 1,
The first token is an electronic device, characterized in that the token having the authority to query the at least one third token.
According to claim 1,
The at least one third token, the electronic device, characterized in that when the registration is performed on at least one IoT device that has received the at least one third token.
In the method of registering an IoT device in the electronic device,
Obtaining registration information of at least one IoT device;
Transmitting a request for generating authentication information including registration information of the at least one IoT device to a server;
Receiving a first token from the server;
Transmitting an authentication information request including the first token to a server generating at least one third token by using at least one second token generated based on registration information of the at least one IoT device;
Receiving authentication information including the at least one third token from the server; And
And transmitting authentication information including the third token to the at least one IoT device.
The method of claim 9,
The registration information of the at least one IoT device may include the number of the at least one IoT device, a type in which the server transmits the first token to at least one of the external electronic device or the electronic device, or the at least one third A method characterized by including information for setting the validity time of the token.
The method of claim 10,
The method for transmitting the first token is characterized in that it is any one of a QR code (QR code), an email (E-mail) or a text message (SMS).
The method of claim 10,
The external electronic device,
Receiving the first token from the server, receiving registration information of the at least one IoT device using the first token,
Acquiring at least one second token based on the registration information of the at least one IoT device,
The at least one third token, the method characterized in that the one-to-one correspondence with the at least one second token acquired from the external electronic device.
The method of claim 12,
The at least one second token is generated as many as the number of the at least one IoT device.
The method of claim 12,
The third token comprises an access token (access token) and a refresh token (refresh token).
The method of claim 9,
The first token is an electronic device, characterized in that the token having the authority to query the at least one third token.
The method of claim 9,
The at least one third token, when the registration is performed in at least one IoT device receiving the at least one third token, characterized in that it expires.
On the server,
At least one processor; And
Memory; wherein the memory includes, when executed, the at least one processor,
Receiving an authentication information generation request including registration information of at least one IoT device from the first electronic device,
On the basis of the request for generating authentication information, a first token used for access to authentication information is generated, and the first token is transmitted to the first electronic device and the second electronic device,
When the first token is received from the second electronic device, registration information of the at least one IoT device is transmitted,
Receiving at least one second token obtained based on registration information of the at least one IoT device from the second electronic device,
Generating at least one third token corresponding to the at least one second token, transmitting information informing the first electronic device that the at least one third token has been generated,
And a server configured to transmit the at least one third token to the first electronic device upon receiving the first token from the first electronic device.
The method of claim 17,
The instructions,
Upon receiving a registration request including a third token from the IoT device, register the IoT device with the server, expire the third token,
A server that receives a token issuance request from the IoT device and transmits a second token corresponding to the third token.
The method of claim 17,
The registration information of the at least one IoT device includes the number of the at least one IoT device, a type by which the server transmits the first token to at least one of the first electronic device or the second electronic device, or the at least one Server comprising the information for setting the validity time of the third token.
The method of claim 17,
The type of transmitting the first token is a server, characterized in that any one of a QR code (QR code), email (E-mail) or text message (SMS).
In the electronic device,
display;
At least one processor; And
Memory; wherein the memory includes, when executed, the at least one processor,
The registration information including at least one of the number of at least one IoT device or the installation time is received, and is displayed on the display.
Receiving an input indicating confirmation of the registration information,
Based on the reception of the input, transmits a request for generating at least one token corresponding to each of the at least one IoT device to an external server,
Receiving the at least one token from the external server,
An electronic device that stores instructions for transmitting the received at least one token to an IoT server.

Images