WO2017169957A1 - Communication unit, extension, and base unit - Google Patents

Communication unit, extension, and base unit Download PDF

Info

Publication number
WO2017169957A1
WO2017169957A1 PCT/JP2017/011128 JP2017011128W WO2017169957A1 WO 2017169957 A1 WO2017169957 A1 WO 2017169957A1 JP 2017011128 W JP2017011128 W JP 2017011128W WO 2017169957 A1 WO2017169957 A1 WO 2017169957A1
Authority
WO
WIPO (PCT)
Prior art keywords
unit
slave unit
pairing
communication
processing unit
Prior art date
Application number
PCT/JP2017/011128
Other languages
French (fr)
Japanese (ja)
Inventor
隆明 青木
誠示 二村
Original Assignee
パナソニックIpマネジメント株式会社
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by パナソニックIpマネジメント株式会社 filed Critical パナソニックIpマネジメント株式会社
Publication of WO2017169957A1 publication Critical patent/WO2017169957A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/22Processing or transfer of terminal data, e.g. status or physical capabilities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Definitions

  • the present invention relates to a communication system, a child device, and a parent device that perform pairing between devices.
  • Non-Patent Document 1 specifications using IEEE 802.15.4 using sub-gigahertz radio waves such as the 920 MHz band are becoming widespread as specifications for wireless communication such as home networks.
  • Bluetooth When pairing between devices in such specifications, it may be necessary to input a long ID or password by the user. For this reason, there is a demand for a new method that allows easy pairing using a push button or the like, and it is predicted that a plurality of methods will be mixed in the market in the future.
  • a repeater may exist between the devices that perform pairing.
  • Patent Literature 1 information indicating that WPS (Wi-Fi Protected Setup), which is a connection setting standard in Wi-Fi (registered trademark), is transmitted and received between devices using a beacon signal. Disclosed.
  • WPS Wi-Fi Protected Setup
  • Non-Patent Document 1 if each device that performs pairing supports a plurality of types of pairing methods, one device cannot recognize the method supported by the other device. For this reason, there is a possibility that pairing between devices may not be performed by an optimal method.
  • an object of the present invention is to provide a communication system, a child device, and a parent device that can recognize a pairing method supported by a partner device even when a repeater is present. To do.
  • a communication system including a slave unit and a master unit that performs pairing with the slave unit according to the first scheme. Supporting the second method different from the first method and the first method, and notifying the parent device of the child device method information indicating that the child device supports the second method after the communication path in the pairing is determined It is characterized by.
  • a slave unit that performs pairing with a master unit by a first method, and as a pairing method, an authentication unit that supports a second method different from the first method and the first method; And a notification means for notifying the master unit of slave unit method information indicating that the slave unit supports the second method after the communication path in the pairing is determined.
  • a third aspect of the present invention is a parent device that performs pairing with a child device by the first method, and after the communication path in the pairing is determined, the child device supports a second method different from the first method. It is characterized in that it is determined that the slave unit supports the second scheme based on the fact that the slave unit method information indicating the above is received from the slave unit.
  • the present invention it is possible to provide a communication system, a slave unit, and a master unit capable of recognizing a pairing method supported by an authentication partner device even when a repeater is present.
  • FIG. 1 is a block diagram illustrating a basic configuration of a communication system according to an embodiment of the present invention.
  • FIG. 2 is a sequence diagram illustrating an example of processing according to the second method of the communication system according to the embodiment of the present invention.
  • FIG. 3 is a sequence diagram illustrating an example of processing according to the first method of the communication system according to the embodiment of the present invention.
  • FIG. 4 is a sequence diagram illustrating an operation example when the slave does not support the second method in the communication system according to the embodiment of the present invention.
  • FIG. 5 is a sequence diagram illustrating an operation example when the parent device does not support the second method in the communication system according to the embodiment of the present invention.
  • FIG. 1 is a block diagram illustrating a basic configuration of a communication system according to an embodiment of the present invention.
  • FIG. 2 is a sequence diagram illustrating an example of processing according to the second method of the communication system according to the embodiment of the present invention.
  • FIG. 3 is a sequence diagram illustrating an example of processing according to the
  • FIG. 6 is a sequence diagram illustrating an operation example when a repeater is present in the communication system according to the embodiment of the present invention.
  • FIG. 7 is a sequence diagram illustrating an operation example of a communication system according to another embodiment of the present invention.
  • FIG. 8 is a diagram for explaining the data structure of a PCI message in a communication system according to another embodiment of the present invention.
  • FIG. 9 is a diagram for explaining the data structure of a PAR message in a communication system according to another embodiment of the present invention.
  • the communication system includes a parent device 1 and a child device 2 that performs pairing with the parent device 1.
  • the base unit 1 is, for example, a smart meter that measures the amount of power consumed by a consumer.
  • mobile_unit 2 is a home energy management system (HEMS) controller which manages the electric power consumption of the apparatus which a consumer owns, the power generation surplus electric energy, etc., for example.
  • HEMS home energy management system
  • the parent device 1 and the child device 2 perform pairing between each other (B route: Route B) and perform encrypted communication.
  • pairing means a series of processes for establishing a connection between devices that perform encrypted communication. Specifically, the pairing is performed by confirming the communication path, exchanging information for determining whether to connect to the partner device, and exchanging keys used for encrypted communication with the partner device. Including sharing. The communication path is determined by acquiring the address or communication channel of the counterpart device.
  • the base unit 1 may be a HEMS controller (coordinator).
  • mobile_unit 2 is power supply apparatuses, such as load apparatuses, such as an air conditioner, a refrigerator, and an illuminating device, a solar cell, and a storage battery, for example.
  • the parent device 1 forms a personal area network (PAN) together with one or more child devices 2 that have been paired.
  • the HEMS controller can be the parent device 1 in the PAN at the same time as the child device 2 in the B route. As described above, the configuration of the parent device 1 and the child device 2 differs depending on the network located.
  • the master unit 1 and the slave unit 2 have a function of performing pairing by a method using, for example, IEEE 802.15.4g, which can use a sub-gigahertz band radio wave having excellent propagation characteristics, as a physical layer specification.
  • the master unit 1 includes a processing device 10, a communication interface (I / F) 11, an input I / F 12, and a storage device 13.
  • the communication I / F 11 communicates with other devices according to control by the processing device 10. Communication performed by the communication I / F 11 may be wireless communication or wired communication.
  • the input I / F 12 inputs a signal corresponding to a user operation to the processing device 10.
  • the input I / F 12 includes an input device such as a push button or a pointing device. Alternatively, the input I / F 12 may be a device that can input a character string or the like, or may be an interface that can input information from an external device.
  • the storage device 13 stores information such as programs and various data used for pairing with the slave unit 2.
  • the processing apparatus 10 has an authentication processing unit 101 and a notification processing unit 102 as a logical structure.
  • the processing device 10 is composed of an integrated circuit (not shown) including, for example, a central processing unit (CPU), a memory, and the like.
  • the authentication processing unit 101 and the notification processing unit 102 are configured by the central processing unit in the processing device 10 executing a computer program installed in advance in a memory in the processing device 10.
  • the authentication processing unit 101 and the notification processing unit 102 may be configured by dedicated hardware.
  • the authentication processing unit 101 and the notification processing unit 102 may be configured by one or a plurality of hardware, and may also be used as another processing device used for other control.
  • the authentication processing unit 101 performs pairing with the child device 2 by performing mutual authentication with the child device 2 using the information stored in the storage device 13.
  • the child device 2 that has been successfully authenticated by the authentication processing unit 101 is registered by the processing device 10.
  • the registered child device 2 performs encrypted communication with the parent device 1.
  • the processing device 10 performs encryption and decryption in encrypted communication with the slave unit 2.
  • the authentication processing unit 101 supports, for example, a first method and a second method different from the first method as a pairing method with the child device 2.
  • the first method is a method in which pairing is started using an identifier (ID) and a password input by a user (or a contractor) via the input I / F 12.
  • ID identifier
  • password input by a user (or a contractor) via the input I / F 12.
  • the ID and password input by the user are stored in the storage device 13 and used as information for determining whether or not connection with the counterpart device is possible.
  • the second method is a method that requires less man-hours for the user than the first method.
  • the second method is a method in which pairing is started by a simple operation by a user such as pressing a button, and does not require input of an ID and a password.
  • the ID and password are automatically shared by communication with a partner device for pairing, and are used as information for determining whether or not connection with the partner device is possible.
  • the notification processing unit 102 notifies the child device 2 of parent device method information indicating that the parent device 1 supports the second method in accordance with the child device method information transmitted from the child device 2.
  • the slave unit method information is information indicating that the slave unit 2 supports the second method.
  • the slave unit method information is transmitted from the slave unit 2 after the communication path in the pairing between the master unit 1 and the slave unit 2 is determined.
  • mobile_unit 2 is provided with the processing apparatus 20, communication I / F21, input I / F22, and the memory
  • FIG. The communication I / F 21 communicates with other devices according to control by the processing device 20. Communication performed by the communication I / F 21 may be wireless communication or wired communication.
  • the input I / F 22 inputs a signal corresponding to a user operation to the processing device 20.
  • the input I / F 22 includes an input device such as a push button and a pointing device. Alternatively, the input I / F 22 may be a device that can input a character string or the like, or may be an interface that can input information from an external device.
  • the storage device 23 stores information such as programs and various data used for pairing with the parent device 1.
  • the processing device 20 has an authentication processing unit 201 and a notification processing unit 202 as a logical structure.
  • the processing device 20 is composed of an integrated circuit (not shown) including, for example, a central processing unit (CPU), a memory, and the like.
  • An authentication processing unit 201 and a notification processing unit 202 are configured by the central processing unit in the processing device 20 executing a computer program installed in advance in a memory in the processing device 20.
  • the authentication processing unit 201 and the notification processing unit 202 may be configured by dedicated hardware.
  • Each of the authentication processing unit 201 and the notification processing unit 202 may be configured by one or a plurality of hardware, and may also be used as another processing device used for other control.
  • the authentication processing unit 201 performs pairing with the parent device 1 by performing mutual authentication with the parent device 1 using the information stored in the storage device 23.
  • the parent device 1 that has been successfully authenticated by the authentication processing unit 201 is registered by the processing device 20.
  • the registered parent device 1 performs encrypted communication with the child device 2.
  • the processing device 20 performs encryption and decryption in encrypted communication with the parent device 1.
  • the authentication processing unit 201 supports a first method and a second method as a pairing method with the parent device 1.
  • the notification processing unit 202 notifies the base unit 1 of handset mode information indicating that the handset 2 supports the second mode after the communication path for pairing with the base unit 1 is determined. That is, the notification processing unit 202 does not notify the base unit 1 of the slave unit method information until the communication path with the base unit 1 is determined in the pairing with the base unit 1.
  • the time when the communication path with the parent device 1 is determined is the time when the child device 2 acquires the address of the parent device 1, or the device that relays communication with the parent device 1 and the address of the parent device 1.
  • base station 1 is decided by the beacon based on IEEE802.15.4, for example.
  • the communication path may be determined by a communication channel in addition to the communication partner address.
  • step S101 the authentication processing unit 101 of the base unit 1 shifts to the registration mode for a predetermined time according to a simple operation on the input I / F 12 by the user.
  • the communication I / F 11 waits for a beacon request transmitted from the child device 2.
  • the beacon request is a message requesting the address of the parent device 1 or the device that relays communication with the parent device 1 and the address of the parent device 1.
  • the beacon request is transmitted as a MAC (MediaMACAccess Control) layer command frame.
  • step S102 the authentication processing unit 201 of the child device 2 shifts to the registration mode for a predetermined time according to a simple operation on the input I / F 22 by the user.
  • the communication I / F 21 waits for a beacon transmitted from the parent device 1.
  • a beacon is a response message to a beacon request.
  • step S103 the authentication processing unit 201 transmits a beacon request to the parent device 1 via the communication I / F 21 in response to a user operation in step S102. Specifically, the authentication processing unit 201 broadcasts a beacon request that stores the address of the slave unit 2 as a transmission source address.
  • step S104 the authentication processing unit 101 receives the beacon request transmitted from the slave unit 2 via the communication I / F 11.
  • the authentication processing unit 101 transmits a beacon that stores the address of the parent device 1 as a transmission source address to the child device 2 via the communication I / F 11.
  • mobile_unit 2 acquires the communication path
  • step S105 the notification processing unit 202 transmits, to the parent device 1, a message storing child device method information indicating that the child device 2 supports the second method via the communication I / F 21.
  • the message in step S105 is, for example, a data frame in the MAC layer defined in IEEE 802.15.4e, and the slave unit method information is stored as payload data.
  • step S106 the authentication processing unit 101 receives the message transmitted from the slave unit 2 in step S105 via the communication I / F 11. That is, the master unit 1 is notified of slave unit method information from the slave unit 2. The authentication processing unit 101 determines that the child device 2 supports the second method based on the child device method information acquired from the received message.
  • step S107 the notification processing unit 102 transmits, to the child device 2, a message storing parent device method information indicating that the parent device 1 supports the second method, in accordance with the child device method information acquired in step S105.
  • the message in step S107 is, for example, a data frame in the MAC layer defined in IEEE 802.15.4e, and the slave unit method information is stored as payload data.
  • step S108 the authentication processing unit 201 receives the message transmitted from the parent device 1 in step S107 via the communication I / F 21. That is, the slave unit 2 is notified of the master unit method information from the master unit 1. The authentication processing unit 201 determines that the parent device 1 supports the second method based on the parent device method information acquired from the received message.
  • step S109 the authentication processing unit 201 transmits an authentication start request, which is a message requesting the start of the authentication process, to the parent device 1 via the communication I / F 21.
  • the authentication start request is a PCI (PANA-Client-Initiation) message in the network access authentication protocol (PANA) defined in RFC5191.
  • PANA network access authentication protocol
  • the parent device 1 corresponds to PAA (PANA Authentication Agent)
  • the child device 2 corresponds to PaC (PANA Client).
  • step S110 the authentication processing unit 101 receives the PCI message transmitted from the child device 2 via the communication I / F 11.
  • the authentication processing unit 101 transmits a PAR (PANA-Auth-Request) message in PANA to the child device 2 as an acknowledgment response to the received PCI message.
  • the PAR message includes the type of authentication algorithm that can be used by the base unit 1.
  • step S111 the authentication processing unit 201 transmits a PAN (PANA-Auth-Answer) message in PANA to the parent device 1 as a response to the PAR message in step S110 via the communication I / F 21.
  • the PAN message includes the type used in the subsequent authentication processing among the types of authentication algorithms included in the PAR message in step S110.
  • the base unit 1 and the handset 2 share the algorithm and the shared key used for the immediately subsequent authentication.
  • the shared key may be shared by, for example, Diffie-Hellman key sharing (DH).
  • DH Diffie-Hellman key sharing
  • the public key used for DH may be exchanged in steps S109 to S110 or steps S110 to S111.
  • the public key may be exchanged by a packet other than the packets of S109 to S111.
  • the master unit 1 and the slave unit 2 perform mutual authentication using the authentication algorithm and the shared key shared in steps S109 to S111.
  • Mutual authentication may be performed by an authentication protocol such as EAP (Extensible Authentication Protocol) supported by PANA.
  • EAP Extensible Authentication Protocol
  • step S116 the authentication processing unit 101 generates an ID and password in the first method.
  • the authentication processing unit 101 encrypts the ID and password, and transmits the encrypted ID and password to the handset 2 via the communication I / F 11 as a PAR message.
  • the ID and password may be generated by the slave unit 2 and transmitted from the slave unit 2 to the master unit 1.
  • step S117 the authentication processing unit 201 decrypts the ID and password acquired from the PAR message in step S116.
  • the authentication processing unit 101 transmits a PAN message indicating that sharing of the ID and password has been completed to the parent device 1 via the communication I / F 21.
  • the series of processes in steps S109 to S117 is a pre-sequence S10 with respect to the standard sequence S20 (see FIG. 3), which is a series of processes of the first method excluding ID and password input operations and beacon requests and beacon transmissions.
  • the pre-sequence S10 is performed before the standard sequence S20.
  • the standard sequence S20 is, for example, “TTC Technical Report TR-1052 HEMS-Smart Meter (B Route) Communication Interface Implementation Detailed Guidelines” (General Incorporated Association Information and Communication Technology Committee, March 17, 2014, Version 1.0) ) Is a known sequence.
  • the parent device 1 and the child device 2 each transmit and receive method information according to a simple operation by the user, and share the ID and password in the pre-sequence S10.
  • the master unit 1 and the slave unit 2 share the ID and password in the pre-sequence S10, and then automatically shift to the standard sequence S20.
  • the base unit 1 when performing pairing by the first method, the base unit 1 enters the ID and password of the handset 2 by the user's operation on the input I / F 12 in step S201, and shifts to the registration mode.
  • mobile_unit 2 transfers to registration mode according to operation with respect to a user's input I / F22 in step S202.
  • mobile_unit 2 broadcasts the beacon request which stores the address of the subunit
  • base unit 1 transmits a beacon that stores the address of base unit 1 as a transmission source address to handset 2 in response to the beacon request. Thereafter, the standard sequence S20 is started.
  • the processing of steps S201 to S204 can be omitted.
  • step S205 the authentication processing unit 201 transmits an authentication start request, which is a message requesting the start of authentication processing, to the parent device 1 via the communication I / F 21.
  • the authentication start request is a PCI message in PANA.
  • step S206 the authentication processing unit 101 receives the PCI message transmitted from the slave unit 2 via the communication I / F 11.
  • the authentication processing unit 101 transmits a PAR message in PANA to the child device 2 as an acceptance response to the PCI message.
  • the PAR message includes the type of authentication algorithm that can be used by the base unit 1.
  • step S207 the authentication processing unit 201 transmits a PAN message in PANA to the parent device 1 as a response to the PAR message in step S110 via the communication I / F 21.
  • the PAN message includes the type used in the subsequent authentication processing among the types of authentication algorithms included in the PAR message in step S206.
  • the authentication processing unit 101 starts mutual authentication with the slave unit 2. That is, the pairing between the parent device 1 and the child device 2 shifts to an authentication phase (Authentication Phase) in PANA.
  • Mutual authentication is performed by an authentication protocol such as EAP, for example. Note that state transition in PANA is defined in RFC5609.
  • the master unit 1 and the slave unit 2 perform mutual authentication using the authentication algorithm and the shared key shared in steps S205 to S207.
  • the authentication processing unit 101 generates session information such as an encryption key used for encrypted communication with the child device 2 and a session validity period.
  • step S212 the authentication processing unit 101 encrypts the session information and transmits it as a PAR message to the handset 2 via the communication I / F 11.
  • step S213 the authentication processing unit 201 decrypts the session information included in the PAR message in step S212, and transmits a PAN message indicating that the authentication processing is completed to the parent device 1.
  • base unit 1 and handset 2 perform encrypted communication using the session key included in the session information. Encrypted communication is performed based on, for example, the ECHONET Lite (registered trademark) standard.
  • the master unit 1 and the slave unit 2P each shift to a registration mode in accordance with a user operation.
  • mobile_unit 2P transmits a beacon request to the main
  • base unit 1 transmits a beacon as a response to the beacon request.
  • step S33 the slave unit 2P does not support the second method and determines that pairing by the first method is started, and therefore transmits the PCI message in the standard sequence S20 to the master unit 1. .
  • step S34 the base unit 1 determines that the handset 2P does not support the second mode in response to receiving the PCI message instead of the message including the handset mode information. Therefore, base unit 1 determines that pairing by the first method has been started, and proceeds to standard sequence S20 including the reception of the PCI message in step S33.
  • base unit 1 may notify the user that pairing by the second method is impossible in step S34 and prompt the user to input an ID and password. After the ID and password are input, the process may proceed immediately to the standard sequence S20, or may be performed after the processes of steps S201 to S202 are performed.
  • the master unit 1P and the slave unit 2 each shift to a registration mode in accordance with a user operation.
  • mobile_unit 2 transmits a beacon request to the main
  • base unit 1P transmits a beacon as a response to the beacon request.
  • step S43 handset 2 transmits a message storing base unit information indicating that handset 2 supports the second mode to base unit 1.
  • the parent device 1P since the parent device 1P does not support the second method, the parent device 1P cannot understand the message in step S33 and does not transmit an appropriate response to the child device 2.
  • step S44 the slave unit 2 receives the response to the slave unit method information for a predetermined time t from the time when the message of step S43 is transmitted, that is, when the slave unit method information is notified. Is determined not to support the second method. Therefore, the subunit
  • step S51 the authentication processing unit 201 broadcasts a beacon request that stores the address of the slave unit 2 as a transmission source address via the communication I / F 21 in response to a user operation on the input I / F 22.
  • the repeater 3 receives the beacon request, and transmits a beacon storing the address of the repeater 3 as a transmission source address to the slave unit 2 in response to the beacon request.
  • the beacon stores the address of the parent device 1 that is the coordinator, or the device that relays communication with the parent device 1 and the address of the parent device 1.
  • mobile_unit 2 acquires the communication path
  • step S53 the notification processing unit 202 transmits a message storing the child device method information indicating that the child device 2 supports the second method to the parent device 1.
  • the message in step S53 stores the address of the base unit 1 or the device that relays communication with the base unit 1 and the address of the base unit 1 as a communication path to the base unit 1.
  • step S54 the repeater 3 receives the message transmitted from the slave unit 2 in step S53, and transmits it to the master unit 1. That is, the master unit 1 is notified of slave unit method information from the slave unit 2.
  • the authentication processing unit 101 determines that the child device 2 supports the second method based on the child device method information acquired from the received message.
  • the messages in steps S53 to S54 are transmitted by a communication layer higher than the communication layer of the relay process performed by the repeater 3. For example, when the repeater 3 is a router, the slave unit method information is stored in a UDP / IP payload or the like and transmitted.
  • step S55 the notification processing unit 102 sends a message storing the parent device method information indicating that the parent device 1 supports the second method to the child device 2 according to the child device method information acquired in step S54. To send.
  • the message in step S55 stores the address of the slave unit 2 or the device that relays communication with the slave unit 2 and the address of the slave unit 2 as a communication path to the slave unit 2.
  • step S56 the repeater 3 receives the message transmitted from the parent device 1 in step S56 and transmits it to the child device 2. That is, the slave unit 2 is notified of the master unit method information from the master unit 1. Similar to the messages in steps S53 to S54, the base unit method information is transmitted by a communication layer higher than the communication layer of the relay process performed by the repeater 3.
  • the repeater 3 can be a repeater, a bridge, a router, or a gateway depending on the communication layer that performs the relay process. That is, when the repeater 3 is a router, the slave unit method information and the master unit method information may be transmitted and received by an IP payload or the like. As described above, the slave unit method information and the master unit method information are transmitted and received by a communication layer higher than the communication layer in which the repeater 3 performs the relay process.
  • the authentication processing unit 201 determines that the parent device 1 supports the second method based on the parent device method information acquired from the received message. Thereafter, the master unit 1 and the slave unit 2 perform the standard sequence S20 excluding the preliminary sequence S10 and the input operation of the ID and password via the repeater 3.
  • the pairing method supported by the counterpart device can be recognized. Therefore, the parent device 1 and the child device 2 can select an optimum method from the possible pairing methods based on the preset priority.
  • the master unit 1 and the slave unit 2 support the second method that can omit the troublesome operation of inputting an ID and a password, pairing can be automatically performed by a simple operation.
  • a supported pairing method is notified to the partner device. Since there is no change in the beacon request and beacon for searching for the coordinator, the master unit 1 and the slave unit 2 can support the IEEE 802.15.4 even if the repeater 3 exists. The pairing method supported by the partner device can be recognized.
  • the slave unit method information and the master unit method information are stored in the data frame has been described as an example, and may be stored and transmitted in other types of messages. It may be.
  • step S601 and S602 the master unit 1 and the slave unit 2 each shift to the registration mode in accordance with a simple operation by the user.
  • step S ⁇ b> 603 the child device 2 transmits a beacon request to the parent device 1.
  • step S604 base unit 1 transmits a beacon to handset 2. Thereby, the communication path in pairing is decided.
  • step S605 the authentication processing unit 201 and the notification processing unit 202 transmit a PCI message storing the slave unit method information to the master unit 1.
  • step S606 the authentication processing unit 101 of the parent device 1 determines that the child device 2 supports the second method based on the child device method information acquired from the PCI message. For example, as shown in FIG. 8, the PCI message in step S605 stores system information (child device system information) by AVP (Attribute (Value Pair) defined by PANA.
  • AVP Attribute (Value Pair) defined by PANA.
  • step S607 the authentication processing unit 101 and the notification processing unit 102 transmit a PAR message storing the parent device method information to the child device 2.
  • step S608 the authentication processing unit 201 of the child device 2 determines that the parent device 1 supports the second method based on the parent device method information acquired from the PAR message.
  • the PAR message in step S607 stores system information (base unit system information) by AVP defined by PANA.
  • steps S609 to S615 is the same as the processing in steps S111 to S117 in FIG.
  • the parent device 1 and the child device 2 automatically shift to the standard sequence S20.
  • the method information is not necessarily stored in the PCI message in step S605 and the PAR message in step S607.
  • the slave unit method information and the master unit method information may be stored in the PAR message in step S607 and the PAN message in step S609.
  • the method information may be sent as payload data in another communication layer such as an IP layer or a TCP / UDP layer.
  • the communication path may be determined by a beacon request and a beacon that comply with IEEE 802.15.4.
  • the communication path may be determined by a probe request and a probe response (or beacon) compliant with IEEE 802.11.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Databases & Information Systems (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

This communication system is provided with an extension (2) and a base unit (1) for performing paring with the extension (2) by a first protocol, the extension (2) supporting a first protocol and a second protocol different from the first protocol as pairing protocols, and notifying the base unit (1) of extension protocol information indicating that the extension (2) supports the second protocol after a communication path in pairing is established.

Description

通信システム、子機及び親機Communication system, slave unit and master unit
 本発明は、機器間のペアリングを行う通信システム、子機及び親機に関する。 The present invention relates to a communication system, a child device, and a parent device that perform pairing between devices.
 近年、ホームネットワーク等の無線通信の仕様として、920MHz帯等のサブギガヘルツ帯の電波を利用するIEEE802.15.4を用いた仕様が普及しつつある(非特許文献1参照)。このような仕様において機器間のペアリングを行う場合、ユーザによる長いIDやパスワードの入力が必要となり得る。この為、プッシュボタン等により簡単にペアリングが行われるような新たな他の方式が求められており、将来的に、複数の方式が市場に混在することが予測されている。また、このような仕様において、ペアリングを行う機器間に中継器が存在し得ることが想定されている。 In recent years, specifications using IEEE 802.15.4 using sub-gigahertz radio waves such as the 920 MHz band are becoming widespread as specifications for wireless communication such as home networks (see Non-Patent Document 1). When pairing between devices in such specifications, it may be necessary to input a long ID or password by the user. For this reason, there is a demand for a new method that allows easy pairing using a push button or the like, and it is predicted that a plurality of methods will be mixed in the market in the future. Moreover, in such a specification, it is assumed that a repeater may exist between the devices that perform pairing.
 一方、特許文献1には、Wi-Fi(登録商標)における接続設定の規格であるWPS(Wi-Fi Protected Setup)をサポートすることを示す情報が、ビーコン信号により機器間で送受信されることが開示される。 On the other hand, in Patent Literature 1, information indicating that WPS (Wi-Fi Protected Setup), which is a connection setting standard in Wi-Fi (registered trademark), is transmitted and received between devices using a beacon signal. Disclosed.
特開2015-167322号公報JP-A-2015-167322
 しかしながら、特許文献1に記載の技術は、親機と、親機と通信しようとする子機の間に他の親機(中継器)が存在する場合、親機と子機とは、他の親機を介してペアリングを行うことができない。 However, in the technique described in Patent Document 1, when there is another parent device (repeater) between the parent device and the child device that is to communicate with the parent device, the parent device and the child device are different from each other. Pairing cannot be performed via the master unit.
 また、非特許文献1の仕様では、仮にペアリングを行う各機器が複数種類のペアリング方式をサポートしている場合、一方の機器は、他方の機器がサポートする方式を認識することができない。このため、最適な方式により機器間のペアリングが行われない可能性がある。 In the specification of Non-Patent Document 1, if each device that performs pairing supports a plurality of types of pairing methods, one device cannot recognize the method supported by the other device. For this reason, there is a possibility that pairing between devices may not be performed by an optimal method.
 本発明は、上記問題点を鑑み、中継器が存在する場合であっても、相手の機器がサポートするペアリングの方式を認識可能な通信システム、子機及び親機を提供することを目的とする。 In view of the above problems, an object of the present invention is to provide a communication system, a child device, and a parent device that can recognize a pairing method supported by a partner device even when a repeater is present. To do.
 上記目的を達成するために、本発明の第1の態様は、子機と、子機と第1方式によりペアリングを行う親機とを備える通信システムにおいて、子機が、ペアリングの方式として、第1方式及び第1方式と異なる第2方式をサポートし、ペアリングにおける通信経路が確定した後に、子機が第2方式をサポートすることを示す子機方式情報を親機に通知することを特徴とする。 In order to achieve the above object, according to a first aspect of the present invention, there is provided a communication system including a slave unit and a master unit that performs pairing with the slave unit according to the first scheme. Supporting the second method different from the first method and the first method, and notifying the parent device of the child device method information indicating that the child device supports the second method after the communication path in the pairing is determined It is characterized by.
 本発明の第2の態様は、親機と第1方式によりペアリングを行う子機であって、ペアリングの方式として、第1方式及び第1方式と異なる第2方式をサポートする認証手段と、ペアリングにおける通信経路が確定した後に、子機が第2方式をサポートすることを示す子機方式情報を親機に通知する通知手段とを備えることを特徴とする。 According to a second aspect of the present invention, there is provided a slave unit that performs pairing with a master unit by a first method, and as a pairing method, an authentication unit that supports a second method different from the first method and the first method; And a notification means for notifying the master unit of slave unit method information indicating that the slave unit supports the second method after the communication path in the pairing is determined.
 本発明の第3の態様は、子機と第1方式によりペアリングを行う親機であって、ペアリングにおける通信経路が確定した後に、子機が第1方式と異なる第2方式サポートすることを示す子機方式情報を子機から受信したことに基づいて、子機が第2方式をサポートすると判定することを特徴とする。 A third aspect of the present invention is a parent device that performs pairing with a child device by the first method, and after the communication path in the pairing is determined, the child device supports a second method different from the first method. It is characterized in that it is determined that the slave unit supports the second scheme based on the fact that the slave unit method information indicating the above is received from the slave unit.
 本発明によれば、中継器が存在する場合であっても、認証相手の機器がサポートするペアリングの方式を認識可能な通信システム、子機及び親機を提供することができる。 According to the present invention, it is possible to provide a communication system, a slave unit, and a master unit capable of recognizing a pairing method supported by an authentication partner device even when a repeater is present.
図1は、本発明の実施の形態に係る通信システムの基本的な構成を説明するブロック図である。FIG. 1 is a block diagram illustrating a basic configuration of a communication system according to an embodiment of the present invention. 図2は、本発明の実施の形態に係る通信システムの第2方式による処理の一例を説明するシーケンス図である。FIG. 2 is a sequence diagram illustrating an example of processing according to the second method of the communication system according to the embodiment of the present invention. 図3は、本発明の実施の形態に係る通信システムの第1方式による処理の一例を説明するシーケンス図である。FIG. 3 is a sequence diagram illustrating an example of processing according to the first method of the communication system according to the embodiment of the present invention. 図4は、本発明の実施の形態に係る通信システムにおいて子機が第2方式をサポートしていない場合の動作例を説明するシーケンス図である。FIG. 4 is a sequence diagram illustrating an operation example when the slave does not support the second method in the communication system according to the embodiment of the present invention. 図5は、本発明の実施の形態に係る通信システムにおいて親機が第2方式をサポートしていない場合の動作例を説明するシーケンス図である。FIG. 5 is a sequence diagram illustrating an operation example when the parent device does not support the second method in the communication system according to the embodiment of the present invention. 図6は、本発明の実施の形態に係る通信システムにおいて中継器が存在する場合の動作例を説明するシーケンス図である。FIG. 6 is a sequence diagram illustrating an operation example when a repeater is present in the communication system according to the embodiment of the present invention. 図7は、本発明の他の実施の形態に係る通信システムの動作例を説明するシーケンス図である。FIG. 7 is a sequence diagram illustrating an operation example of a communication system according to another embodiment of the present invention. 図8は、本発明の他の実施の形態に係る通信システムにおけるPCIメッセージのデータ構造を説明する図である。FIG. 8 is a diagram for explaining the data structure of a PCI message in a communication system according to another embodiment of the present invention. 図9は、本発明の他の実施の形態に係る通信システムにおけるPARメッセージのデータ構造を説明する図である。FIG. 9 is a diagram for explaining the data structure of a PAR message in a communication system according to another embodiment of the present invention.
 次に、図面を参照して、実施の形態を説明する。以下の図面の記載において、同一又は類似の部分には同一又は類似の符号を付し、重複する説明を省略している。 Next, embodiments will be described with reference to the drawings. In the following description of the drawings, the same or similar parts are denoted by the same or similar reference numerals, and redundant description is omitted.
 (通信システム)
 本実施の形態に係る通信システムは、図1に示すように、親機1と、親機1とペアリングを行う子機2とを備える。親機1は、例えば、需要家の消費電力量等を計測するスマートメータである。子機2は、例えば、需要家が所有する機器の使用電力量、発電余剰電力量等を管理するホームエネルギーマネジメントシステム(HEMS)コントローラである。この場合、親機1及び子機2は、互いの間(Bルート:Route B)でペアリングを行い、暗号化通信を行う。 (Communications system)
As shown in FIG. 1, the communication system according to the present embodiment includes a parent device 1 and a child device 2 that performs pairing with the parent device 1. The base unit 1 is, for example, a smart meter that measures the amount of power consumed by a consumer. The subunit | mobile_unit 2 is a home energy management system (HEMS) controller which manages the electric power consumption of the apparatus which a consumer owns, the power generation surplus electric energy, etc., for example. In this case, the parent device 1 and the child device 2 perform pairing between each other (B route: Route B) and perform encrypted communication.
 本実施の形態において、「ペアリング」とは、暗号化通信を行う機器間の接続を確立するための一連の処理をいう。具体的には、ペアリングは、通信経路の確定と、相手機器との接続の可否を判断するための情報の交換と、相手機器との暗号化通信に用いる鍵の交換に必要な事前鍵の共有とを含む。通信経路は、相手機器のアドレス又は通信チャネルを取得することにより確定される。 In this embodiment, “pairing” means a series of processes for establishing a connection between devices that perform encrypted communication. Specifically, the pairing is performed by confirming the communication path, exchanging information for determining whether to connect to the partner device, and exchanging keys used for encrypted communication with the partner device. Including sharing. The communication path is determined by acquiring the address or communication channel of the counterpart device.
 或いは、親機1は、HEMSコントローラ(コーディネータ)であってもよい。この場合、子機2は、例えば、エアコン、冷蔵庫、照明装置等の負荷機器や、太陽電池、蓄電池等の電源機器等である。親機1は、ペアリングが完了した1又は複数の子機2と共にパーソナルエリアネットワーク(PAN)を構成する。HEMSコントローラは、Bルートにおける子機2であると同時に、PANにおける親機1であり得る。このように、親機1及び子機2は、位置するネットワークにより構成が異なる。 Alternatively, the base unit 1 may be a HEMS controller (coordinator). In this case, the subunit | mobile_unit 2 is power supply apparatuses, such as load apparatuses, such as an air conditioner, a refrigerator, and an illuminating device, a solar cell, and a storage battery, for example. The parent device 1 forms a personal area network (PAN) together with one or more child devices 2 that have been paired. The HEMS controller can be the parent device 1 in the PAN at the same time as the child device 2 in the B route. As described above, the configuration of the parent device 1 and the child device 2 differs depending on the network located.
 親機1及び子機2は、例えば、伝搬特性に優れるサブギガヘルツ帯の電波を利用可能なIEEE802.15.4gを物理層の仕様とする方式によりペアリングを行う機能を有する。 The master unit 1 and the slave unit 2 have a function of performing pairing by a method using, for example, IEEE 802.15.4g, which can use a sub-gigahertz band radio wave having excellent propagation characteristics, as a physical layer specification.
 親機1は、処理装置10と、通信インターフェース(I/F)11と、入力I/F12と、記憶装置13とを備える。通信I/F11は、処理装置10による制御に応じて他の機器と通信する。通信I/F11が行う通信は、無線通信であっても有線通信であってもよい。入力I/F12は、ユーザの操作に応じた信号を処理装置10に入力する。入力I/F12は、例えばプッシュボタンやポインティングデバイス等の入力装置からなる。或いは、入力I/F12は、文字列等が入力可能な装置であってもよく、外部装置からの情報を入力可能なインターフェースであってもよい。記憶装置13は、子機2とのペアリングに用いるプログラムや各種データ等の情報を記憶する。 The master unit 1 includes a processing device 10, a communication interface (I / F) 11, an input I / F 12, and a storage device 13. The communication I / F 11 communicates with other devices according to control by the processing device 10. Communication performed by the communication I / F 11 may be wireless communication or wired communication. The input I / F 12 inputs a signal corresponding to a user operation to the processing device 10. The input I / F 12 includes an input device such as a push button or a pointing device. Alternatively, the input I / F 12 may be a device that can input a character string or the like, or may be an interface that can input information from an external device. The storage device 13 stores information such as programs and various data used for pairing with the slave unit 2.
 処理装置10は、認証処理部101と、通知処理部102とを論理構造として有する。処理装置10は、例えば、中央演算装置(CPU)、メモリ等を含む、図示されていない集積回路からなる。例えば、処理装置10における中央演算装置が、処理装置10におけるメモリに予めインストールされたコンピュータプログラムを実行することにより、認証処理部101及び通知処理部102が構成される。認証処理部101及び通知処理部102は、専用のハードウェアにより構成されてもよい。認証処理部101及び通知処理部102は、1又は複数のハードウェアにより構成されてもよく、他の制御に用いる他の処理装置と兼用されてもよい。 The processing apparatus 10 has an authentication processing unit 101 and a notification processing unit 102 as a logical structure. The processing device 10 is composed of an integrated circuit (not shown) including, for example, a central processing unit (CPU), a memory, and the like. For example, the authentication processing unit 101 and the notification processing unit 102 are configured by the central processing unit in the processing device 10 executing a computer program installed in advance in a memory in the processing device 10. The authentication processing unit 101 and the notification processing unit 102 may be configured by dedicated hardware. The authentication processing unit 101 and the notification processing unit 102 may be configured by one or a plurality of hardware, and may also be used as another processing device used for other control.
 認証処理部101は、記憶装置13に記憶された情報を用いて、子機2と相互認証を行うことにより、子機2とのペアリングを行う。認証処理部101による相互認証が成功した子機2は、処理装置10により登録される。登録された子機2は、親機1と暗号化通信を行う。処理装置10は、子機2との暗号化通信における暗号化及び復号化を行う。 The authentication processing unit 101 performs pairing with the child device 2 by performing mutual authentication with the child device 2 using the information stored in the storage device 13. The child device 2 that has been successfully authenticated by the authentication processing unit 101 is registered by the processing device 10. The registered child device 2 performs encrypted communication with the parent device 1. The processing device 10 performs encryption and decryption in encrypted communication with the slave unit 2.
 認証処理部101は、例えば、子機2とのペアリングの方式として、第1方式と、第1方式と異なる第2方式とをサポートする。第1方式は、入力I/F12を介してユーザ(又は施工者)により入力された識別子(ID)及びパスワードを利用してペアリングが開始される方式である。第1方式において、ユーザにより入力されたID及びパスワードは、記憶装置13に記憶され、相手機器との接続の可否を判断するための情報として使用される。 The authentication processing unit 101 supports, for example, a first method and a second method different from the first method as a pairing method with the child device 2. The first method is a method in which pairing is started using an identifier (ID) and a password input by a user (or a contractor) via the input I / F 12. In the first method, the ID and password input by the user are stored in the storage device 13 and used as information for determining whether or not connection with the counterpart device is possible.
 第2方式は、第1方式と比べて、ユーザが実施する工数が小さい方式である。第2方式は、例えば、ボタンの押下等、ユーザによる簡単な操作がされることによりペアリングが開始される方式であり、ID及びパスワードの入力が不要な方式である。第2方式において、ID及びパスワードは、ペアリングの相手機器との通信により自動的に共有され、相手機器との接続の可否を判断するための情報として使用される。 The second method is a method that requires less man-hours for the user than the first method. The second method is a method in which pairing is started by a simple operation by a user such as pressing a button, and does not require input of an ID and a password. In the second method, the ID and password are automatically shared by communication with a partner device for pairing, and are used as information for determining whether or not connection with the partner device is possible.
 通知処理部102は、子機2から送信される子機方式情報に応じて、親機1が第2方式をサポートすることを示す親機方式情報を子機2に通知する。子機方式情報は、子機2が第2方式をサポートすることを示す情報である。子機方式情報は、親機1と子機2との間のペアリングにおける通信経路が確定した後に子機2から送信される。 The notification processing unit 102 notifies the child device 2 of parent device method information indicating that the parent device 1 supports the second method in accordance with the child device method information transmitted from the child device 2. The slave unit method information is information indicating that the slave unit 2 supports the second method. The slave unit method information is transmitted from the slave unit 2 after the communication path in the pairing between the master unit 1 and the slave unit 2 is determined.
 子機2は、処理装置20と、通信I/F21と、入力I/F22と、記憶装置23とを備える。通信I/F21は、処理装置20による制御に応じて他の機器と通信する。通信I/F21が行う通信は、無線通信であっても有線通信であってもよい。入力I/F22は、ユーザの操作に応じた信号を処理装置20に入力する。入力I/F22は、例えばプッシュボタンやポインティングデバイス等の入力装置からなる。或いは、入力I/F22は、文字列等が入力可能な装置であってもよく、外部装置からの情報を入力可能なインターフェースであってもよい。記憶装置23は、親機1とのペアリングに用いるプログラムや各種データ等の情報を記憶する。 The subunit | mobile_unit 2 is provided with the processing apparatus 20, communication I / F21, input I / F22, and the memory | storage device 23. FIG. The communication I / F 21 communicates with other devices according to control by the processing device 20. Communication performed by the communication I / F 21 may be wireless communication or wired communication. The input I / F 22 inputs a signal corresponding to a user operation to the processing device 20. The input I / F 22 includes an input device such as a push button and a pointing device. Alternatively, the input I / F 22 may be a device that can input a character string or the like, or may be an interface that can input information from an external device. The storage device 23 stores information such as programs and various data used for pairing with the parent device 1.
 処理装置20は、認証処理部201と、通知処理部202とを論理構造として有する。処理装置20は、例えば、中央演算装置(CPU)、メモリ等を含む、図示されていない集積回路からなる。処理装置20における中央演算装置が、処理装置20におけるメモリに予めインストールされたコンピュータプログラムを実行することにより、認証処理部201及び通知処理部202が構成される。認証処理部201及び通知処理部202は、専用のハードウェアにより構成されてもよい。認証処理部201及び通知処理部202は、それぞれ、1又は複数のハードウェアにより構成されてもよく、他の制御に用いる他の処理装置と兼用されてもよい。 The processing device 20 has an authentication processing unit 201 and a notification processing unit 202 as a logical structure. The processing device 20 is composed of an integrated circuit (not shown) including, for example, a central processing unit (CPU), a memory, and the like. An authentication processing unit 201 and a notification processing unit 202 are configured by the central processing unit in the processing device 20 executing a computer program installed in advance in a memory in the processing device 20. The authentication processing unit 201 and the notification processing unit 202 may be configured by dedicated hardware. Each of the authentication processing unit 201 and the notification processing unit 202 may be configured by one or a plurality of hardware, and may also be used as another processing device used for other control.
 認証処理部201は、記憶装置23に記憶された情報を用いて、親機1と相互認証を行うことにより、親機1とのペアリングを行う。認証処理部201による相互認証が成功した親機1は、処理装置20により登録される。登録された親機1は、子機2と暗号化通信を行う。処理装置20は、親機1との暗号化通信における暗号化及び復号化を行う。認証処理部201は、例えば、親機1とのペアリングの方式として、第1方式と、第2方式とをサポートする。 The authentication processing unit 201 performs pairing with the parent device 1 by performing mutual authentication with the parent device 1 using the information stored in the storage device 23. The parent device 1 that has been successfully authenticated by the authentication processing unit 201 is registered by the processing device 20. The registered parent device 1 performs encrypted communication with the child device 2. The processing device 20 performs encryption and decryption in encrypted communication with the parent device 1. For example, the authentication processing unit 201 supports a first method and a second method as a pairing method with the parent device 1.
 通知処理部202は、親機1とのペアリングにおける通信経路が確定した後に、子機2が第2方式をサポートすることを示す子機方式情報を親機1に通知する。即ち、通知処理部202は、親機1とのペアリングにおいて、親機1との通信経路が確定するまで、子機方式情報を親機1に通知しない。親機1との通信経路が確定する時点は、子機2が、親機1のアドレス、又は、親機1との通信を中継する機器及び親機1のアドレスを取得する時点である。親機1との通信経路は、例えば、IEEE802.15.4に準拠するビーコンにより確定される。通信経路は、通信相手のアドレスの他、通信チャネルにより確定されてもよい。 The notification processing unit 202 notifies the base unit 1 of handset mode information indicating that the handset 2 supports the second mode after the communication path for pairing with the base unit 1 is determined. That is, the notification processing unit 202 does not notify the base unit 1 of the slave unit method information until the communication path with the base unit 1 is determined in the pairing with the base unit 1. The time when the communication path with the parent device 1 is determined is the time when the child device 2 acquires the address of the parent device 1, or the device that relays communication with the parent device 1 and the address of the parent device 1. The communication path with the main | base station 1 is decided by the beacon based on IEEE802.15.4, for example. The communication path may be determined by a communication channel in addition to the communication partner address.
 (ペアリング方法)
 図2及び図3のシーケンス図を参照して、本実施の形態に係る通信システムにおける第2方式によるペアリング方法の一例を説明する。 (Pairing method)
An example of the pairing method according to the second method in the communication system according to the present embodiment will be described with reference to the sequence diagrams of FIGS.
 ステップS101において、親機1の認証処理部101は、ユーザの入力I/F12に対する簡単な操作に応じて、所定時間、登録モードに移行する。登録モードにおいて、通信I/F11は、子機2から送信されるビーコンリクエストを待ち受ける。ビーコンリクエストは、親機1のアドレス、又は、親機1との通信を中継する機器及び親機1のアドレスを要求するメッセージである。ビーコンリクエストは、MAC(Media Access Control)層のコマンドフレームとして送信される。 In step S101, the authentication processing unit 101 of the base unit 1 shifts to the registration mode for a predetermined time according to a simple operation on the input I / F 12 by the user. In the registration mode, the communication I / F 11 waits for a beacon request transmitted from the child device 2. The beacon request is a message requesting the address of the parent device 1 or the device that relays communication with the parent device 1 and the address of the parent device 1. The beacon request is transmitted as a MAC (MediaMACAccess Control) layer command frame.
 ステップS102において、子機2の認証処理部201は、ユーザの入力I/F22に対する簡単な操作に応じて、所定時間、登録モードに移行する。登録モードにおいて、通信I/F21は、親機1から送信されるビーコンを待ち受ける。ビーコンは、ビーコンリクエストに対する応答メッセージである。 In step S102, the authentication processing unit 201 of the child device 2 shifts to the registration mode for a predetermined time according to a simple operation on the input I / F 22 by the user. In the registration mode, the communication I / F 21 waits for a beacon transmitted from the parent device 1. A beacon is a response message to a beacon request.
 ステップS103において、認証処理部201は、ステップS102におけるユーザの操作に応じて、通信I/F21を介して、ビーコンリクエストを親機1に送信する。具体的には、認証処理部201は、子機2のアドレスを送信元アドレスとして格納するビーコンリクエストをブロードキャストする。 In step S103, the authentication processing unit 201 transmits a beacon request to the parent device 1 via the communication I / F 21 in response to a user operation in step S102. Specifically, the authentication processing unit 201 broadcasts a beacon request that stores the address of the slave unit 2 as a transmission source address.
 ステップS104において、認証処理部101は、通信I/F11を介して、子機2から送信されたビーコンリクエストを受信する。認証処理部101は、登録モードにおいて受信したビーコンリクエストに応じて、通信I/F11を介して、親機1のアドレスを送信元アドレスとして格納するビーコンを子機2に送信する。子機2は、ビーコンを受信することにより親機1までの通信経路を取得し、ペアリングにおける通信経路が確定される。 In step S104, the authentication processing unit 101 receives the beacon request transmitted from the slave unit 2 via the communication I / F 11. In response to the beacon request received in the registration mode, the authentication processing unit 101 transmits a beacon that stores the address of the parent device 1 as a transmission source address to the child device 2 via the communication I / F 11. The subunit | mobile_unit 2 acquires the communication path | route to the main | base station 1 by receiving a beacon, and the communication path | route in pairing is decided.
 ステップS105において、通知処理部202は、通信I/F21を介して、子機2が第2方式をサポートすることを示す子機方式情報を格納するメッセージを親機1に送信する。ステップS105のメッセージは、例えば、IEEE802.15.4eに規定されるMAC層のデータフレームであり、子機方式情報は、ペイロードデータとして格納される。 In step S105, the notification processing unit 202 transmits, to the parent device 1, a message storing child device method information indicating that the child device 2 supports the second method via the communication I / F 21. The message in step S105 is, for example, a data frame in the MAC layer defined in IEEE 802.15.4e, and the slave unit method information is stored as payload data.
 ステップS106において、認証処理部101は、通信I/F11を介して、ステップS105において子機2から送信されたメッセージを受信する。即ち、親機1は、子機2から子機方式情報が通知される。認証処理部101は、受信したメッセージから取得される子機方式情報に基づいて、子機2が第2方式をサポートすると判定する。 In step S106, the authentication processing unit 101 receives the message transmitted from the slave unit 2 in step S105 via the communication I / F 11. That is, the master unit 1 is notified of slave unit method information from the slave unit 2. The authentication processing unit 101 determines that the child device 2 supports the second method based on the child device method information acquired from the received message.
 ステップS107において、通知処理部102は、ステップS105において取得した子機方式情報に応じて、親機1が第2方式をサポートすることを示す親機方式情報を格納するメッセージを子機2に送信する。ステップS107のメッセージは、例えば、IEEE802.15.4eに規定されるMAC層のデータフレームであり、子機方式情報は、ペイロードデータとして格納される。 In step S107, the notification processing unit 102 transmits, to the child device 2, a message storing parent device method information indicating that the parent device 1 supports the second method, in accordance with the child device method information acquired in step S105. To do. The message in step S107 is, for example, a data frame in the MAC layer defined in IEEE 802.15.4e, and the slave unit method information is stored as payload data.
 ステップS108において、認証処理部201は、通信I/F21を介して、ステップS107において親機1から送信されたメッセージを受信する。即ち、子機2は、親機1から親機方式情報が通知される。認証処理部201は、受信したメッセージから取得される親機方式情報に基づいて、親機1が第2方式をサポートすると判定する。 In step S108, the authentication processing unit 201 receives the message transmitted from the parent device 1 in step S107 via the communication I / F 21. That is, the slave unit 2 is notified of the master unit method information from the master unit 1. The authentication processing unit 201 determines that the parent device 1 supports the second method based on the parent device method information acquired from the received message.
 ステップS109において、認証処理部201は、通信I/F21を介して、認証処理の開始を要求するメッセージである認証開始要求を親機1に送信する。認証開始要求は、RFC5191に規定されるネットワークアクセス認証プロトコル(PANA)におけるPCI(PANA-Client-Initiation)メッセージである。この場合、親機1は、PAA(PANA Authentication Agent)に相当し、子機2は、PaC(PANA Client)に相当する。 In step S109, the authentication processing unit 201 transmits an authentication start request, which is a message requesting the start of the authentication process, to the parent device 1 via the communication I / F 21. The authentication start request is a PCI (PANA-Client-Initiation) message in the network access authentication protocol (PANA) defined in RFC5191. In this case, the parent device 1 corresponds to PAA (PANA Authentication Agent), and the child device 2 corresponds to PaC (PANA Client).
 ステップS110において、認証処理部101は、通信I/F11を介して、子機2から送信されたPCIメッセージを受信する。認証処理部101は、受信されたPCIメッセージに対する承諾応答として、PANAにおけるPAR(PANA-Auth-Request)メッセージを子機2に送信する。PARメッセージは、親機1が使用可能な認証アルゴリズムの種類等を含む。 In step S110, the authentication processing unit 101 receives the PCI message transmitted from the child device 2 via the communication I / F 11. The authentication processing unit 101 transmits a PAR (PANA-Auth-Request) message in PANA to the child device 2 as an acknowledgment response to the received PCI message. The PAR message includes the type of authentication algorithm that can be used by the base unit 1.
 ステップS111において、認証処理部201は、通信I/F21を介して、ステップS110のPARメッセージに対する応答として、PANAにおけるPAN(PANA-Auth-Answer)メッセージを親機1に送信する。PANメッセージは、ステップS110のPARメッセージに含まれる認証アルゴリズムの種類のうち、以降の認証処理において使用する種類等を含む。 In step S111, the authentication processing unit 201 transmits a PAN (PANA-Auth-Answer) message in PANA to the parent device 1 as a response to the PAR message in step S110 via the communication I / F 21. The PAN message includes the type used in the subsequent authentication processing among the types of authentication algorithms included in the PAR message in step S110.
 ステップS109-S111の処理により、親機1及び子機2は、直後の認証に用いるアルゴリズム及び共有鍵が共有される。共有鍵は、例えば、ディフィー・ヘルマン鍵共有(DH)等により共有されるようにすればよい。なお、DHに用いる公開鍵は、ステップS109-S110、又は、ステップS110-S111において交換されればよい。或いは、ステップS112-S115より前であれば、S109-S111のパケット以外のパケットにより公開鍵が交換されるようにしてもよい。 Through the processing of steps S109 to S111, the base unit 1 and the handset 2 share the algorithm and the shared key used for the immediately subsequent authentication. The shared key may be shared by, for example, Diffie-Hellman key sharing (DH). The public key used for DH may be exchanged in steps S109 to S110 or steps S110 to S111. Alternatively, as long as it is before steps S112 to S115, the public key may be exchanged by a packet other than the packets of S109 to S111.
 ステップS112-S115において、親機1及び子機2は、ステップS109-S111において共有された認証アルゴリズム及び共有鍵を用いて、相互認証を行う。相互認証は、例えば、PANAによりサポートされるEAP(Extensible Authentication Protocol)等の認証プロトコルにより行われるようにすればよい。 In steps S112 to S115, the master unit 1 and the slave unit 2 perform mutual authentication using the authentication algorithm and the shared key shared in steps S109 to S111. Mutual authentication may be performed by an authentication protocol such as EAP (Extensible Authentication Protocol) supported by PANA.
 ステップS116において、認証処理部101は、第1方式におけるID及びパスワードを生成する。認証処理部101は、ID及びパスワードを暗号化して、PARメッセージとして、通信I/F11を介して子機2に送信する。ID及びパスワードは、子機2により生成され、子機2から親機1に送信されるようにしてもよい。 In step S116, the authentication processing unit 101 generates an ID and password in the first method. The authentication processing unit 101 encrypts the ID and password, and transmits the encrypted ID and password to the handset 2 via the communication I / F 11 as a PAR message. The ID and password may be generated by the slave unit 2 and transmitted from the slave unit 2 to the master unit 1.
 ステップS117において、認証処理部201は、ステップS116のPARメッセージから取得されるID及びパスワードを復号化する。認証処理部101は、ID及びパスワードの共有が完了したことを示すPANメッセージを、通信I/F21を介して親機1に送信する。 In step S117, the authentication processing unit 201 decrypts the ID and password acquired from the PAR message in step S116. The authentication processing unit 101 transmits a PAN message indicating that sharing of the ID and password has been completed to the parent device 1 via the communication I / F 21.
 ステップS109-S117の一連の処理は、ID及びパスワードの入力操作とビーコンリクエスト及びビーコンの送信とを除く第1方式の一連の処理である標準シーケンスS20(図3参照)に対する事前シーケンスS10である。事前シーケンスS10は、標準シーケンスS20の前に実施される。標準シーケンスS20は、例えば、「TTC技術レポート TR-1052 HEMS-スマートメーター(Bルート)通信インタフェース実装詳細ガイドライン」(一般社団法人情報通信技術委員会、2014年3月17日、第1.0版)において記載されるように、公知のシーケンスである。 The series of processes in steps S109 to S117 is a pre-sequence S10 with respect to the standard sequence S20 (see FIG. 3), which is a series of processes of the first method excluding ID and password input operations and beacon requests and beacon transmissions. The pre-sequence S10 is performed before the standard sequence S20. The standard sequence S20 is, for example, “TTC Technical Report TR-1052 HEMS-Smart Meter (B Route) Communication Interface Implementation Detailed Guidelines” (General Incorporated Association Information and Communication Technology Committee, March 17, 2014, Version 1.0) ) Is a known sequence.
 第2方式によりペアリングを行う場合、親機1及び子機2は、それぞれユーザによる簡単な操作に応じて、方式情報を送受信し、事前シーケンスS10において、ID及びパスワードを共有する。親機1及び子機2は、事前シーケンスS10においてID及びパスワードを共有した後、自動的に標準シーケンスS20に移行する。 When pairing is performed by the second method, the parent device 1 and the child device 2 each transmit and receive method information according to a simple operation by the user, and share the ID and password in the pre-sequence S10. The master unit 1 and the slave unit 2 share the ID and password in the pre-sequence S10, and then automatically shift to the standard sequence S20.
 なお、第1方式によりペアリングを行う場合、親機1は、ステップS201において、ユーザの入力I/F12に対する操作により、子機2のID及びパスワードが入力され、登録モードに移行する。子機2は、ステップS202において、ユーザの入力I/F22に対する操作に応じて登録モードに移行する。ステップS203において、子機2は、子機2のアドレスを送信元アドレスとして格納するビーコンリクエストをブロードキャストする。ステップS204において、親機1は、ビーコンリクエストに応じて、親機1のアドレスを送信元アドレスとして格納するビーコンを子機2に送信する。その後、標準シーケンスS20が開始される。第2方式によりペアリングを行う場合、ステップS201-S204の処理は省略可能である。 Note that, when performing pairing by the first method, the base unit 1 enters the ID and password of the handset 2 by the user's operation on the input I / F 12 in step S201, and shifts to the registration mode. The subunit | mobile_unit 2 transfers to registration mode according to operation with respect to a user's input I / F22 in step S202. In step S203, the subunit | mobile_unit 2 broadcasts the beacon request which stores the address of the subunit | mobile_unit 2 as a transmission source address. In step S204, base unit 1 transmits a beacon that stores the address of base unit 1 as a transmission source address to handset 2 in response to the beacon request. Thereafter, the standard sequence S20 is started. When pairing is performed by the second method, the processing of steps S201 to S204 can be omitted.
 ステップS205において、認証処理部201は、通信I/F21を介して、認証処理の開始を要求するメッセージである認証開始要求を親機1に送信する。認証開始要求は、PANAにおけるPCIメッセージである。 In step S205, the authentication processing unit 201 transmits an authentication start request, which is a message requesting the start of authentication processing, to the parent device 1 via the communication I / F 21. The authentication start request is a PCI message in PANA.
 ステップS206において、認証処理部101は、通信I/F11を介して、子機2から送信されたPCIメッセージを受信する。認証処理部101は、PCIメッセージに対する承諾応答として、PANAにおけるPARメッセージを子機2に送信する。PARメッセージは、親機1が使用可能な認証アルゴリズムの種類等を含む。 In step S206, the authentication processing unit 101 receives the PCI message transmitted from the slave unit 2 via the communication I / F 11. The authentication processing unit 101 transmits a PAR message in PANA to the child device 2 as an acceptance response to the PCI message. The PAR message includes the type of authentication algorithm that can be used by the base unit 1.
 ステップS207において、認証処理部201は、通信I/F21を介して、ステップS110のPARメッセージに対する応答として、PANAにおけるPANメッセージを親機1に送信する。PANメッセージは、ステップS206のPARメッセージに含まれる認証アルゴリズムの種類のうち、以降の認証処理において使用する種類等を含む。 In step S207, the authentication processing unit 201 transmits a PAN message in PANA to the parent device 1 as a response to the PAR message in step S110 via the communication I / F 21. The PAN message includes the type used in the subsequent authentication processing among the types of authentication algorithms included in the PAR message in step S206.
 通信I/F11がステップS207のPANメッセージを受信することにより、認証処理部101は、子機2との相互認証を開始する。即ち、親機1と子機2とのペアリングは、PANAにおける認証フェーズ(Authentication Phase)に移行する。相互認証は、例えば、EAP等の認証プロトコルにより行われる。なお、PANAにおける状態遷移については、RFC5609に規定される。 When the communication I / F 11 receives the PAN message in step S207, the authentication processing unit 101 starts mutual authentication with the slave unit 2. That is, the pairing between the parent device 1 and the child device 2 shifts to an authentication phase (Authentication Phase) in PANA. Mutual authentication is performed by an authentication protocol such as EAP, for example. Note that state transition in PANA is defined in RFC5609.
 このように、ステップS208-S211において、親機1及び子機2は、ステップS205-S207において共有された認証アルゴリズムと、共有鍵とを用いて、相互認証を行う。認証処理部101は、子機2との暗号化通信に用いる暗号鍵、セッション有効期間等のセッション情報を生成する。 As described above, in steps S208 to S211, the master unit 1 and the slave unit 2 perform mutual authentication using the authentication algorithm and the shared key shared in steps S205 to S207. The authentication processing unit 101 generates session information such as an encryption key used for encrypted communication with the child device 2 and a session validity period.
 ステップS212において、認証処理部101は、セッション情報を暗号化して、PARメッセージとして、通信I/F11を介して子機2に送信する。 In step S212, the authentication processing unit 101 encrypts the session information and transmits it as a PAR message to the handset 2 via the communication I / F 11.
 ステップS213において、認証処理部201は、ステップS212のPARメッセージに含まれるセッション情報を復号化して、認証処理が完了したことを示すPANメッセージを親機1に送信する。 In step S213, the authentication processing unit 201 decrypts the session information included in the PAR message in step S212, and transmits a PAN message indicating that the authentication processing is completed to the parent device 1.
 その後、親機1及び子機2は、セッション情報に含まれるセッション鍵を用いて、暗号化通信を行う。暗号化通信は、例えば、ECHONET Lite(登録商標)規格に準拠して行われる。 Thereafter, base unit 1 and handset 2 perform encrypted communication using the session key included in the session information. Encrypted communication is performed based on, for example, the ECHONET Lite (registered trademark) standard.
 (第1動作例)
 図4のシーケンス図を参照して、子機2が、第2方式をサポートせず、通知処理部202を有しない子機2Pである場合の通信システムの動作例を説明する。 (First operation example)
With reference to the sequence diagram of FIG. 4, an operation example of the communication system when the slave unit 2 is a slave unit 2P that does not support the second method and does not have the notification processing unit 202 will be described.
 先ず、親機1及び子機2Pは、それぞれ、ユーザの操作に応じて、登録モードに移行する。子機2Pは、ステップS31において、ビーコンリクエストを親機1に送信する。親機1は、ステップS32において、ビーコンリクエストに対する応答としてビーコンを送信する。 First, the master unit 1 and the slave unit 2P each shift to a registration mode in accordance with a user operation. The subunit | mobile_unit 2P transmits a beacon request to the main | base station 1 in step S31. In step S32, base unit 1 transmits a beacon as a response to the beacon request.
 ステップS33において、子機2Pは、第2方式をサポートしておらず、第1方式によるペアリングが開始されていると判断しているため、標準シーケンスS20におけるPCIメッセージを親機1に送信する。 In step S33, the slave unit 2P does not support the second method and determines that pairing by the first method is started, and therefore transmits the PCI message in the standard sequence S20 to the master unit 1. .
 ステップS34において、親機1は、子機方式情報を含むメッセージでなく、PCIメッセージを受信することに応じて、子機2Pが第2方式をサポートしていないと判定する。よって、親機1は、第1方式によるペアリングが開始されていると判断し、ステップS33のPCIメッセージの受信を含めて標準シーケンスS20に移行する。 In step S34, the base unit 1 determines that the handset 2P does not support the second mode in response to receiving the PCI message instead of the message including the handset mode information. Therefore, base unit 1 determines that pairing by the first method has been started, and proceeds to standard sequence S20 including the reception of the PCI message in step S33.
 なお、第1方式によるペアリングには、ID及びパスワードの入力が必要である。この為、親機1は、ステップS34において、第2方式によるペアリングが不可能であることをユーザに通知し、ユーザにID及びパスワードの入力を促すようにすればよい。ID及びパスワードが入力された後は、直ぐに標準シーケンスS20に移行してもよく、ステップS201-S202の処理が行われてから標準シーケンスS20に移行するようにしてもよい。 Note that ID and password entry is required for pairing using the first method. Therefore, base unit 1 may notify the user that pairing by the second method is impossible in step S34 and prompt the user to input an ID and password. After the ID and password are input, the process may proceed immediately to the standard sequence S20, or may be performed after the processes of steps S201 to S202 are performed.
 (第2動作例)
 図5のシーケンス図を参照して、親機1が、第2方式をサポートせず、通知処理部102を有しない親機1Pである場合の通信システムの動作例を説明する。 (Second operation example)
With reference to the sequence diagram of FIG. 5, an operation example of the communication system when the parent device 1 is the parent device 1P that does not support the second method and does not have the notification processing unit 102 will be described.
 先ず、親機1P及び子機2は、それぞれ、ユーザの操作に応じて、登録モードに移行する。子機2は、ステップS41において、ビーコンリクエストを親機1Pに送信する。親機1Pは、ステップS42において、ビーコンリクエストに対する応答としてビーコンを送信する。 First, the master unit 1P and the slave unit 2 each shift to a registration mode in accordance with a user operation. The subunit | mobile_unit 2 transmits a beacon request to the main | base station 1P in step S41. In step S42, base unit 1P transmits a beacon as a response to the beacon request.
 ステップS43において、子機2は、子機2が第2方式をサポートすることを示す子機方式情報を格納するメッセージを親機1に送信する。しかし、親機1Pは、第2方式をサポートしていないため、ステップS33のメッセージを理解できず、適正な応答を子機2に送信しない。 In step S43, handset 2 transmits a message storing base unit information indicating that handset 2 supports the second mode to base unit 1. However, since the parent device 1P does not support the second method, the parent device 1P cannot understand the message in step S33 and does not transmit an appropriate response to the child device 2.
 ステップS44において、子機2は、ステップS43のメッセージを送信した時点、即ち、子機方式情報を通知した時点から所定時間t、子機方式情報に対する応答を受信しないことに応じて、親機1Pが第2方式をサポートしていないと判定する。よって、子機2は、第1方式によるペアリングを開始すると判断し、標準シーケンスS20に移行する。子機2は、ステップS44において、第2方式によるペアリングが不可能であることをユーザに通知し、ユーザにID及びパスワードの入力を促す。ID及びパスワードが入力された後は、直ぐに標準シーケンスS20に移行してもよく、ステップS201-S202の処理が行われてから標準シーケンスS20に移行するようにしてもよい。 In step S44, the slave unit 2 receives the response to the slave unit method information for a predetermined time t from the time when the message of step S43 is transmitted, that is, when the slave unit method information is notified. Is determined not to support the second method. Therefore, the subunit | mobile_unit 2 judges that the pairing by a 1st system is started, and transfers to standard sequence S20. The subunit | mobile_unit 2 notifies a user that pairing by a 2nd system is impossible in step S44, and prompts a user to input ID and a password. After the ID and password are input, the process may proceed immediately to the standard sequence S20, or may be performed after the processes of steps S201 to S202 are performed.
 (第3動作例)
 図6のシーケンス図を参照して、親機1と子機2との間に中継器3が存在し、親機1及び子機2がマルチホップ通信を行う場合の通信システムの動作例を説明する。 (Third operation example)
With reference to the sequence diagram of FIG. 6, an operation example of the communication system when the repeater 3 exists between the parent device 1 and the child device 2 and the parent device 1 and the child device 2 perform multi-hop communication will be described. To do.
 ステップS51において、認証処理部201は、ユーザの入力I/F22に対する操作に応じて、通信I/F21を介して、子機2のアドレスを送信元アドレスとして格納するビーコンリクエストをブロードキャストする。 In step S51, the authentication processing unit 201 broadcasts a beacon request that stores the address of the slave unit 2 as a transmission source address via the communication I / F 21 in response to a user operation on the input I / F 22.
 ステップS52において、中継器3は、ビーコンリクエストを受信し、ビーコンリクエストに応じて、中継器3のアドレスを送信元アドレスとして格納するビーコンを子機2に送信する。ビーコンは、その他、コーディネータである親機1のアドレス、又は、親機1との通信を中継する機器及び親機1のアドレスを格納する。子機2は、ビーコンを受信することにより親機1までの通信経路を取得し、ペアリングにおける通信経路が確定される。 In step S52, the repeater 3 receives the beacon request, and transmits a beacon storing the address of the repeater 3 as a transmission source address to the slave unit 2 in response to the beacon request. In addition, the beacon stores the address of the parent device 1 that is the coordinator, or the device that relays communication with the parent device 1 and the address of the parent device 1. The subunit | mobile_unit 2 acquires the communication path | route to the main | base station 1 by receiving a beacon, and the communication path | route in pairing is decided.
 ステップS53において、通知処理部202は、子機2が第2方式をサポートすることを示す子機方式情報を格納するメッセージを親機1に宛てて送信する。ステップS53のメッセージは、親機1のアドレス、又は、親機1との通信を中継する機器及び親機1のアドレスを、親機1までの通信経路として格納する。 In step S53, the notification processing unit 202 transmits a message storing the child device method information indicating that the child device 2 supports the second method to the parent device 1. The message in step S53 stores the address of the base unit 1 or the device that relays communication with the base unit 1 and the address of the base unit 1 as a communication path to the base unit 1.
 ステップS54において、中継器3は、ステップS53において子機2から送信されたメッセージを受信し、親機1に宛てて送信する。即ち、親機1は、子機2から子機方式情報が通知される。認証処理部101は、受信したメッセージから取得される子機方式情報に基づいて、子機2が第2方式をサポートすると判定する。ステップS53-S54のメッセージは、中継器3が行う中継処理の通信レイヤ以上の通信レイヤにより送信される。例えば、中継器3がルータである場合、子機方式情報は、UDP/IPペイロード等に格納されて送信される。 In step S54, the repeater 3 receives the message transmitted from the slave unit 2 in step S53, and transmits it to the master unit 1. That is, the master unit 1 is notified of slave unit method information from the slave unit 2. The authentication processing unit 101 determines that the child device 2 supports the second method based on the child device method information acquired from the received message. The messages in steps S53 to S54 are transmitted by a communication layer higher than the communication layer of the relay process performed by the repeater 3. For example, when the repeater 3 is a router, the slave unit method information is stored in a UDP / IP payload or the like and transmitted.
 ステップS55において、通知処理部102は、ステップS54において取得した子機方式情報に応じて、親機1が第2方式をサポートすることを示す親機方式情報を格納するメッセージを子機2に宛てて送信する。ステップS55のメッセージは、子機2のアドレス、又は、子機2との通信を中継する機器及び子機2のアドレスを、子機2までの通信経路として格納する。 In step S55, the notification processing unit 102 sends a message storing the parent device method information indicating that the parent device 1 supports the second method to the child device 2 according to the child device method information acquired in step S54. To send. The message in step S55 stores the address of the slave unit 2 or the device that relays communication with the slave unit 2 and the address of the slave unit 2 as a communication path to the slave unit 2.
 ステップS56において、中継器3は、ステップS56において親機1から送信されたメッセージを受信し、子機2に宛てて送信する。即ち、子機2は、親機1から親機方式情報が通知される。ステップS53-S54のメッセージと同様に、親機方式情報は、中継器3が行う中継処理の通信レイヤ以上の通信レイヤにより送信される。 In step S56, the repeater 3 receives the message transmitted from the parent device 1 in step S56 and transmits it to the child device 2. That is, the slave unit 2 is notified of the master unit method information from the master unit 1. Similar to the messages in steps S53 to S54, the base unit method information is transmitted by a communication layer higher than the communication layer of the relay process performed by the repeater 3.
 なお、中継器3は、中継処理を行う通信レイヤに応じて、リピータ、ブリッジ、ルータ、ゲートウェイとなり得る。即ち、中継器3がルータである場合、子機方式情報及び親機方式情報は、IPペイロード等により送受信されるようにすればよい。このように、子機方式情報及び親機方式情報は、中継器3が中継処理を行う通信レイヤ以上の通信レイヤにより送受信される。 The repeater 3 can be a repeater, a bridge, a router, or a gateway depending on the communication layer that performs the relay process. That is, when the repeater 3 is a router, the slave unit method information and the master unit method information may be transmitted and received by an IP payload or the like. As described above, the slave unit method information and the master unit method information are transmitted and received by a communication layer higher than the communication layer in which the repeater 3 performs the relay process.
 認証処理部201は、受信したメッセージから取得される親機方式情報に基づいて、親機1が第2方式をサポートすると判定する。以降、親機1及び子機2は、中継器3を介して、事前シーケンスS10及びID及びパスワードの入力操作を除く標準シーケンスS20を実施する。 The authentication processing unit 201 determines that the parent device 1 supports the second method based on the parent device method information acquired from the received message. Thereafter, the master unit 1 and the slave unit 2 perform the standard sequence S20 excluding the preliminary sequence S10 and the input operation of the ID and password via the repeater 3.
 以上のように、本実施の形態に係る通信システムによれば、相手の機器がサポートするペアリングの方式を認識することができる。よって、親機1及び子機2は、実施可能なペアリングの方式から、予め設定された優先度に基づいて、最適な方式を選択することができる。親機1及び子機2が、ID及びパスワードの入力という面倒な操作を省略できる第2方式をサポートする場合、簡単な操作により自動的にペアリングを行うことができる。 As described above, according to the communication system according to the present embodiment, the pairing method supported by the counterpart device can be recognized. Therefore, the parent device 1 and the child device 2 can select an optimum method from the possible pairing methods based on the preset priority. When the master unit 1 and the slave unit 2 support the second method that can omit the troublesome operation of inputting an ID and a password, pairing can be automatically performed by a simple operation.
 また、本実施の形態に係る通信システムによれば、IEEE802.15.4に準拠するビーコンにより通信経路が確定された後に、サポートするペアリングの方式を相手の機器に通知する。コーディネータを探索するビーコンリクエスト及びビーコンに変更がないため、親機1及び子機2は、中継器3が存在する場合であっても、中継器3がIEEE802.15.4をサポートしていれば、相手の機器がサポートするペアリングの方式を認識することができる。 Also, according to the communication system according to the present embodiment, after a communication path is determined by a beacon compliant with IEEE802.15.4, a supported pairing method is notified to the partner device. Since there is no change in the beacon request and beacon for searching for the coordinator, the master unit 1 and the slave unit 2 can support the IEEE 802.15.4 even if the repeater 3 exists. The pairing method supported by the partner device can be recognized.
 (その他の実施の形態)
 上記のように、実施の形態を記載したが、この開示の一部をなす論述及び図面は本発明を限定するものであると理解すべきではない。この開示から当業者には様々な代替実施の形態、実施例及び運用技術が明らかとなろう。 (Other embodiments)
Although the embodiment has been described as described above, it should not be understood that the description and drawings constituting a part of this disclosure limit the present invention. From this disclosure, various alternative embodiments, examples and operational techniques will be apparent to those skilled in the art.
 例えば、既に述べた実施の形態において、子機方式情報及び親機方式情報は、データフレームに格納される場合を説明したが、例示であり、他の種類のメッセージに格納されて送信されるようにしてもよい。 For example, in the above-described embodiment, the case where the slave unit method information and the master unit method information are stored in the data frame has been described as an example, and may be stored and transmitted in other types of messages. It may be.
 図7のシーケンス図を参照して、他の実施の形態に係る通信システムにおける第2方式によるペアリング方法の一例を説明する。以下において、図2のシーケンス図の説明と同様であり重複する場合、詳細な説明を省略する。 An example of the pairing method according to the second method in the communication system according to another embodiment will be described with reference to the sequence diagram of FIG. In the following, the description is the same as the description of the sequence diagram of FIG.
 ステップS601及びS602において、親機1及び子機2は、それぞれ、ユーザの簡単な操作に応じて、登録モードに移行する。ステップS603において、子機2は、ビーコンリクエストを親機1に送信する。ステップS604において、親機1は、ビーコンを子機2に送信する。これにより、ペアリングにおける通信経路が確定される。 In steps S601 and S602, the master unit 1 and the slave unit 2 each shift to the registration mode in accordance with a simple operation by the user. In step S <b> 603, the child device 2 transmits a beacon request to the parent device 1. In step S604, base unit 1 transmits a beacon to handset 2. Thereby, the communication path in pairing is decided.
 ステップS605において、認証処理部201及び通知処理部202は、子機方式情報を格納するPCIメッセージを親機1に送信する。ステップS606において、親機1の認証処理部101は、PCIメッセージから取得される子機方式情報に基づいて、子機2が第2方式をサポートすると判定する。ステップS605におけるPCIメッセージは、例えば、図8に示すように、PANAで規定されるAVP(Attribute Value Pair)により方式情報(子機方式情報)を格納する。 In step S605, the authentication processing unit 201 and the notification processing unit 202 transmit a PCI message storing the slave unit method information to the master unit 1. In step S606, the authentication processing unit 101 of the parent device 1 determines that the child device 2 supports the second method based on the child device method information acquired from the PCI message. For example, as shown in FIG. 8, the PCI message in step S605 stores system information (child device system information) by AVP (Attribute (Value Pair) defined by PANA.
 ステップS607において、認証処理部101及び通知処理部102は、親機方式情報を格納するPARメッセージを子機2に送信する。ステップS608において、子機2の認証処理部201は、PARメッセージから取得される親機方式情報に基づいて、親機1が第2方式をサポートすると判定する。ステップS607におけるPARメッセージは、例えば、図9に示すように、PANAで規定されるAVPにより方式情報(親機方式情報)を格納する。 In step S607, the authentication processing unit 101 and the notification processing unit 102 transmit a PAR message storing the parent device method information to the child device 2. In step S608, the authentication processing unit 201 of the child device 2 determines that the parent device 1 supports the second method based on the parent device method information acquired from the PAR message. For example, as shown in FIG. 9, the PAR message in step S607 stores system information (base unit system information) by AVP defined by PANA.
 ステップS609-S615の処理は、図2のステップS111-S117の処理と同様である。このように、親機1及び子機2は、第1方式において使用するID及びパスワードを共有した後、自動的に標準シーケンスS20に移行する。 The processing in steps S609 to S615 is the same as the processing in steps S111 to S117 in FIG. Thus, after sharing the ID and password used in the first method, the parent device 1 and the child device 2 automatically shift to the standard sequence S20.
 なお、方式情報は、必ずしもステップS605におけるPCIメッセージ及びステップS607におけるPARメッセージに格納されなくてもよい。例えば、子機方式情報及び親機方式情報は、ステップS607におけるPARメッセージ及びステップS609におけるPANメッセージに格納されるようにしてもよい。その他、方式情報は、IP層やTCP/UDP層等の他の通信レイヤにおけるペイロードデータとして送付されてもよい。 Note that the method information is not necessarily stored in the PCI message in step S605 and the PAR message in step S607. For example, the slave unit method information and the master unit method information may be stored in the PAR message in step S607 and the PAN message in step S609. In addition, the method information may be sent as payload data in another communication layer such as an IP layer or a TCP / UDP layer.
 また、既に述べた実施の形態において、通信経路の確定は、IEEE802.15.4に準拠するビーコンリクエスト及びビーコンにより行われてもよい。その他、通信経路は、IEEE802.11に準拠するプローブリクエスト及びプローブレスポンス(又はビーコン)により確定されるようにしてもよい。 In the above-described embodiment, the communication path may be determined by a beacon request and a beacon that comply with IEEE 802.15.4. In addition, the communication path may be determined by a probe request and a probe response (or beacon) compliant with IEEE 802.11.
 上記の他、本発明はここでは記載していない様々な実施の形態等を含むことは勿論である。したがって、本発明の技術的範囲は上記の説明から妥当な請求の範囲に係る発明特定事項によってのみ定められるものである。 Of course, in addition to the above, the present invention includes various embodiments not described herein. Therefore, the technical scope of the present invention is defined only by the invention specifying matters according to the scope of claims reasonable from the above description.
1 親機
2 子機
101、201 認証処理部(認証手段)
102、202 通知処理部(通知手段) 1 Master device 2 Slave devices 101 and 201 Authentication processing unit (authentication means)
102, 202 Notification processing unit (notification means)

Claims (7)

  1.  子機と、前記子機と第1方式によりペアリングを行う親機とを備える通信システムにおいて、
     前記子機は、
     前記ペアリングの方式として、前記第1方式及び前記第1方式と異なる第2方式をサポートし、
     前記ペアリングにおける通信経路が確定した後に、前記子機が前記第2方式をサポートすることを示す子機方式情報を前記親機に通知することを特徴とする通信システム。     In a communication system comprising a slave unit and a master unit that performs pairing with the slave unit by the first method,
    The slave is
    As the pairing method, the second method different from the first method and the first method is supported,
    A communication system, characterized in that, after a communication path in the pairing is determined, slave unit method information indicating that the slave unit supports the second scheme is notified to the master unit.
  2.  前記親機は、前記子機方式情報に基づいて、前記子機が前記第2方式をサポートすると判定することを特徴とする請求項1に記載の通信システム。 2. The communication system according to claim 1, wherein the master unit determines that the slave unit supports the second scheme based on the slave unit scheme information.
  3.  前記親機は、
     前記第2方式をサポートし、
     前記子機方式情報に応じて、前記親機が前記第2方式をサポートすることを示す親機方式情報を前記子機に通知することを特徴とする請求項2に記載の通信システム。     The base unit is
    Support the second method,
    3. The communication system according to claim 2, wherein base unit method information indicating that the base unit supports the second mode is notified to the slave unit according to the base unit method information.
  4.  前記子機は、前記子機方式情報を通知した時点から所定時間、前記子機方式情報に対する応答を受信しないことに応じて、前記親機が前記第2方式をサポートしないと判定することを特徴とする請求項1又は2に記載の通信システム。 The slave unit determines that the master unit does not support the second scheme in response to not receiving a response to the slave unit scheme information for a predetermined time from the time when the slave unit scheme information is notified. The communication system according to claim 1 or 2.
  5.  前記通信経路は、IEEE802.15.4に準拠するビーコンにより確定されることを特徴とする請求項1乃至4の何れか1項に記載の通信システム。 The communication system according to any one of claims 1 to 4, wherein the communication path is determined by a beacon compliant with IEEE802.15.4.
  6.  親機と第1方式によりペアリングを行う子機であって、
     前記ペアリングの方式として、前記第1方式及び前記第1方式と異なる第2方式をサポートする認証手段と、
     前記ペアリングにおける通信経路が確定した後に、前記子機が前記第2方式をサポートすることを示す子機方式情報を前記親機に通知する通知手段と
     を備えることを特徴とする子機。     A slave unit that performs pairing with the master unit in the first method,
    An authentication unit that supports a second method different from the first method and the first method as the pairing method;
    A slave unit comprising: notification means for notifying the master unit of slave unit method information indicating that the slave unit supports the second method after the communication path in the pairing is determined.
  7.  子機と第1方式によりペアリングを行う親機であって、
     前記ペアリングにおける通信経路が確定した後に、前記子機が前記第1方式と異なる第2方式をサポートすることを示す子機方式情報を前記子機から受信したことに基づいて、前記子機が前記第2方式をサポートすると判定することを特徴とする親機。     A parent device that performs pairing with the child device by the first method,
    After the communication path in the pairing is determined, the slave unit receives the slave unit method information indicating that the slave unit supports a second method different from the first method. It is determined that the second system is supported.
PCT/JP2017/011128 2016-03-28 2017-03-21 Communication unit, extension, and base unit WO2017169957A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2016063613A JP2017183790A (en) 2016-03-28 2016-03-28 Communication system, slave unit, and master unit
JP2016-063613 2016-03-28

Publications (1)

Publication Number Publication Date
WO2017169957A1 true WO2017169957A1 (en) 2017-10-05

Family

ID=59965211

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2017/011128 WO2017169957A1 (en) 2016-03-28 2017-03-21 Communication unit, extension, and base unit

Country Status (2)

Country Link
JP (1) JP2017183790A (en)
WO (1) WO2017169957A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP4228235A4 (en) * 2020-10-12 2024-03-27 Panasonic Intellectual Property Management Co., Ltd. Apparatus information registration system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2011234205A (en) * 2010-04-28 2011-11-17 Brother Ind Ltd Wireless communication apparatus
JP2013187600A (en) * 2012-03-06 2013-09-19 Olympus Corp Radio communication terminal, radio communication system, radio setup method and program
JP2014033282A (en) * 2012-08-01 2014-02-20 Ricoh Co Ltd Communication method, radio communication device, and program

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2011234205A (en) * 2010-04-28 2011-11-17 Brother Ind Ltd Wireless communication apparatus
JP2013187600A (en) * 2012-03-06 2013-09-19 Olympus Corp Radio communication terminal, radio communication system, radio setup method and program
JP2014033282A (en) * 2012-08-01 2014-02-20 Ricoh Co Ltd Communication method, radio communication device, and program

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP4228235A4 (en) * 2020-10-12 2024-03-27 Panasonic Intellectual Property Management Co., Ltd. Apparatus information registration system

Also Published As

Publication number Publication date
JP2017183790A (en) 2017-10-05

Similar Documents

Publication Publication Date Title
US11824892B2 (en) Terminal matching method and apparatus
JP6727292B2 (en) Security authentication methods, configuration methods, and related devices
JP2018521566A (en) Distributed configurator entity
WO2014040481A1 (en) Authentication method and system for wireless mesh network
KR102119586B1 (en) Systems and methods for relaying data over communication networks
US10263960B2 (en) Wireless communication system and wireless communication method
JP2018524865A (en) Flexible configuration and authentication of wireless devices
KR20090115292A (en) Method and apparatus for setting wireless LAN using button
KR20150051568A (en) Security supporting method and system for proximity based service device to device discovery and communication in mobile telecommunication system environment
JP2011176582A (en) Wireless lan device, wireless lan system, and program thereof
US20080219452A1 (en) Wireless device and key exchange method thereof
JP2017511049A (en) Access point initiated neighbor report request
WO2021213463A1 (en) Network configuration method and apparatus for intelligent device, and electronic device and computer-readable medium
EP4008118B1 (en) Secure path discovery in a mesh network
WO2022028259A1 (en) User subscription data obtaining method and apparatus
WO2024083235A1 (en) Network configuration method based on wi-fi sensing, embedded chip system, and medium
EP3637815A1 (en) Data transmission method, and device and system related thereto
JP5721183B2 (en) Wireless LAN communication system, wireless LAN base unit, communication connection establishment method, and program
WO2017169957A1 (en) Communication unit, extension, and base unit
CN111669753A (en) WLAN network connection method and electronic equipment
EP2506489A1 (en) Wireless authentication terminal
US20230308868A1 (en) Method, devices and system for performing key management
EP4391614A1 (en) Communication method, apparatus and system
JP2017063342A (en) Control device, communication system, and control method
WO2023121947A1 (en) Offloading network communications to a shared modem

Legal Events

Date Code Title Description
NENP Non-entry into the national phase

Ref country code: DE

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17774498

Country of ref document: EP

Kind code of ref document: A1

122 Ep: pct application non-entry in european phase

Ref document number: 17774498

Country of ref document: EP

Kind code of ref document: A1