WO2018121572A1 - Cloud platform-based internet-of-things terminal communication management and control system and method - Google Patents

Cloud platform-based internet-of-things terminal communication management and control system and method Download PDF

Info

Publication number
WO2018121572A1
WO2018121572A1 PCT/CN2017/118877 CN2017118877W WO2018121572A1 WO 2018121572 A1 WO2018121572 A1 WO 2018121572A1 CN 2017118877 W CN2017118877 W CN 2017118877W WO 2018121572 A1 WO2018121572 A1 WO 2018121572A1
Authority
WO
WIPO (PCT)
Prior art keywords
internet
iot
things
communication
terminal
Prior art date
Application number
PCT/CN2017/118877
Other languages
French (fr)
Chinese (zh)
Inventor
杨立群
衣昕楠
Original Assignee
珠海国芯云科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 珠海国芯云科技有限公司 filed Critical 珠海国芯云科技有限公司
Publication of WO2018121572A1 publication Critical patent/WO2018121572A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/54Presence management, e.g. monitoring or registration for receipt of user log-on information, or the connection status of the users
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/535Tracking the activity of the user

Definitions

  • the present invention relates to the field of Internet of Things, and in particular, to a cloud platform-based IOT terminal communication management system and method thereof.
  • the Internet of Things has received extensive attention worldwide.
  • the Internet of Things is regarded as the third wave of the world information industry after computers, the Internet and mobile communication networks, and it has received extensive attention worldwide.
  • Domestic and foreign enterprises, universities, scientific research institutions and relevant international standardization organizations have initiated research on issues related to the Internet of Things.
  • the United States proposed the concept of "smart planet” to vigorously develop the emerging technology of the Internet of Things.
  • the European Union has also begun research on IoT technology in the "RFID and IoT Research Project Cluster” under the Seventh Framework.
  • China has also explicitly included the “Internet of Things” in the National Medium- and Long-Term Science and Technology Development Plan (2006-2020) and the 2050 National Industry Roadmap.
  • the promotion of the Internet of Things will become another driving force for promoting China's economic development, which is of great significance for optimizing China's industrial structure and promoting economic growth in various industries.
  • IoT terminal services Due to the large difference between the IoT service and the ordinary mobile service, most of the IoT terminal services are small-traffic services, and most of them are uplink services. At the same time, most IoT terminals are unattended terminals, which need to be protected against IoT terminals. Abuse, anti-theft, and terminal power savings, but these new requirements cannot be solved by current mobile network management technologies.
  • the current IoT platform has problems such as poor security and confidentiality, low data transmission rate, short transmission distance, and cumbersome user terminal access.
  • the present invention provides a cloud platform-based Internet of Things communication management system and method thereof, which are used to realize an Internet of Things platform that creates a good security and confidentiality, a high data transmission rate, a long transmission distance, and seamless access of user terminals. .
  • a cloud platform-based IoT terminal communication management system including:
  • the Internet of Things cloud platform its functions include control terminal binding, control terminal command forwarding, user client identity verification, and IoT terminal identity verification;
  • the Internet of Things cloud control gateway its role includes IoT terminal protocol conversion and IoT terminal internal control, providing local access authentication for IoT terminals and IoT communication devices, providing LAN communication forwarding function, providing TCP/IP upper-level communication and a conversion bridge for the underlying communication of the Internet of Things proprietary protocol;
  • the Internet of Things communication devices are respectively arranged in the Internet of Things cloud control gateway and the Internet of Things terminal, and are used for interaction between the Internet of Things cloud control gateway and the Internet of Things terminal, including operation commands and status information;
  • the function of the Internet of Things terminal includes receiving the command of the Internet of Things cloud control gateway, controlling the IoT sensor, the controller, and transmitting the IoT sensor controller status to the Internet of Things cloud control gateway through the Internet of Things communication device;
  • the Internet of Things cloud platform is connected to the Internet of Things cloud control gateway, and the Internet of Things cloud control gateway is connected to the Internet of Things terminal by the Internet of Things communication machine.
  • the wireless physical support layer of the Internet of Things proprietary protocol includes a 2.4 GHz global open ISM frequency band, and supports six-channel license-free data transmission and reception.
  • the wireless physical support layer of the Internet of Things proprietary protocol includes a maximum 125 frequency point hopping communication.
  • the data link layer of the Internet of Things proprietary protocol provides reliable communication of plaintext data; provides reliable communication of static keys; and provides reliable communication of dynamic key pairing.
  • the Internet of Things cloud platform includes:
  • the functions of the Internet of Things cloud control gateway include:
  • the command data from the Internet of Things terminal is received, and is distributed to the corresponding Internet of Things terminal according to the command data and content.
  • the Internet of Things cloud service platform is connected to the Internet and Ethernet in a bridge manner.
  • the communication between the Internet of Things cloud platform and the Internet is encrypted by using an SSL certificate
  • the Internet of Things cloud control gateway adopts an independent SSL client certificate
  • a method for controlling communication control of an Internet of Things terminal based on the communication control system of the Internet of Things terminal includes:
  • the Internet of Things cloud control gateway requests a key from the IoT cloud platform and burns the obtained certificate into it;
  • the Internet of Things cloud control gateway sends an encrypted communication request to the target IoT communication machine through the IoT communication machine configured therein;
  • the target communicator After the target communicator passes the verification, it responds with a response packet with a dynamic key.
  • the data communication after the paired connection of the Internet of Things terminal adopts a dynamic rolling key.
  • a cloud platform-based IOT terminal communication management and control system and method provided by the present invention can utilize the mass storage capability and the extremely powerful computing capability of the cloud service platform, and utilize the Internet of Things cloud control gateway and communication.
  • the communication encryption of the machine and the Internet of Things terminal realizes the security and confidentiality of the Internet of Things platform, high data transmission rate, long transmission distance and seamless access of user terminals.
  • FIG. 1 is a structural diagram of a cloud platform-based IoT terminal communication management system according to an embodiment of the present invention
  • FIG. 2 is a schematic diagram of a communication verification process of a cloud platform-based IOT terminal communication management and control method according to an embodiment of the present invention
  • FIG. 3 is a schematic flowchart of a process in which an IoT cloud control gateway requests a key from a cloud platform and burns it;
  • FIG. 4 is a schematic flow chart showing a process of programming a communication address and a key by a communication device
  • FIG. 5 is a schematic diagram of a flow control method of an Internet of Things terminal based on a cloud platform, including modifying a method of pairing keys.
  • FIG. 1 is a schematic diagram of a cloud platform-based IoT terminal communication management system according to an embodiment of the present invention.
  • the cloud platform-based IoT terminal communication management system includes: an Internet of Things cloud platform, and its function Including control terminal binding, control terminal command forwarding, user client authentication, IoT terminal authentication; Internet of Things cloud control gateway, including Internet of Things terminal protocol conversion and IoT terminal internal control, for IoT terminals, Internet of Things
  • the communication machine provides local access authentication, provides local area network communication forwarding function, and provides a conversion bridge for upper communication of TCP/IP upper-level communication and IoT proprietary protocol; IoT communication machine is respectively configured in the Internet of Things cloud control gateway and IoT terminal
  • the interaction between the cloud control gateway and the Internet of Things terminal of the Internet of Things includes operation commands and status information; the Internet of Things terminal receives commands of the Internet of Things cloud control gateway, controls the IoT sensor, the controller, and The IoT sensor controller status is sent to the Internet of Things cloud control gateway via the IoT
  • the Internet of Things cloud platform is connected to the Internet of Things cloud control gateway, and the Internet of Things cloud control gateway is connected to the Internet of Things terminal by the Internet of Things communication machine.
  • the wireless physical support layer of the Internet of Things proprietary protocol includes a 2.4 GHz global open ISM band and supports six channels of license-free data transmission and reception.
  • the wireless physical support layer of the Internet of Things proprietary protocol includes a maximum of 125 frequency point hopping communications.
  • the data link layer of the Internet of Things proprietary protocol provides reliable communication of plaintext data; provides reliable communication of static keys; and provides reliable communication of dynamic key pairing.
  • the wireless physical support layer provides two services through data service access points and management service access points.
  • the sending and receiving of data is done through the data service provided by the physical layer, and the management service is responsible for the following tasks:
  • the device controls the activation and deactivation of the radio transceiver according to whether the data is transmitted or received.
  • Channel energy detection is used to measure the power intensity of wireless signal reception in all available channels, and to provide the basis for channel selection for the network layer by comparing the power intensity in each channel. . This energy detection is performed before the device starts networking or enters the network. If the 2.4 GHz band is selected, 16 channels are detected in turn, and the channel with the best channel quality is selected as its own working channel.
  • Link quality indication (LQI) of the received data The link quality indicator generates a signal to noise ratio indicator by decoding the received wireless signal, and the network layer or the application layer is passed through the signal to noise ratio indicator. It can know the received data frame, the strength and quality of the wireless signal, and so on, and judge the quality of the data link. In a mesh network, data can be transmitted by judging and selecting an optimal path by the quality of the link.
  • Selection and switching can be performed between multiple available channels. For example, if the frequency band of 2.4 GHz is selected, the range of the selectable frequency band is 2400 MHz to 2483.5 MHz by changing the channel. If the frequency band of 915 MHz is selected, the range of the available frequency band is 902 to 928 MHz.
  • the data link layer uses the CSMA-CA mechanism to access the selected working channel and provides the following two services through two service access points.
  • the MAC data service is accessed through the sub-layer data access point MCPS-SAP of the public part.
  • the MAC sublayer handles transactions such as accessing physical wireless channels through the above two services, and is mainly responsible for the following tasks:
  • a network beacon can be generated (the device is a network coordinator).
  • the network coordinator can generate beacon frames as needed to enable other devices in the network to track and process beacons so that they can be synchronized with the network coordinator.
  • beacons In a PAN network using beacons, other devices in the network, such as routers and simplified function devices, can be synchronized with the coordinator via beacon frames.
  • a device that is not connected to the network completes the network connection by generating a connection request command and sending the command to the coordinator of the PAN identifier and the network address specified in the command packet; and a device connected to the network passes the The coordinator or its own parent sends a disconnect request for the device to leave the PAN network.
  • the communication between devices is secure. Any communication between devices needs to match the PAN identifier and the network address.
  • there is a retransmission mechanism for the data that fails to be transmitted which can greatly reduce the communication failure rate and further ensure data security. Reliably transmitted to the other party.
  • Channel access uses the CSMA-CA access mechanism.
  • CSMA-CA collision avoidance carrier detection
  • GTS guaranteed time slot
  • the device to be communicated can obtain the access right of the channel without going through the random competition mechanism in the CSMA-CA, and the device activates and transmits and receives data only in its own time slot, which is in an emergency situation. Communication is particularly useful, but in most cases CSMA-CA's access mechanism is used to effectively avoid competition and conflicts, as well as improve channel utilization.
  • Full-featured device can act as a network coordinator, set up a network, and let other FFD or simplified function devices (RFDs) join the network.
  • FFD can serve as a gateway for the entire network. Through this gateway, the wireless sensor network can contact other networks.
  • the commonly used Internet can also be connected to the PC of the control center through a serial port or a USB port to transmit and receive data and transmit commands.
  • FFD can act as a transit device in the network and has the ability to route.
  • the Internet of Things cloud platform is further configured to: implement IoT communicator address generation, remote programming, and address data management; implement IoT communication key generation, remote programming (or modification), and Key data management; assists the Internet of Things cloud control gateway to provide key negotiation for IoT communication machine encrypted communication.
  • the role of the Internet of Things cloud control gateway further includes:
  • the command data from the Internet of Things terminal is received, and is distributed to the corresponding Internet of Things terminal according to the command data and content.
  • the Internet of Things cloud service platform is connected to the Internet and Ethernet in a bridge manner.
  • the communication between the Internet of Things cloud platform and the Internet is encrypted by using an SSL certificate
  • the Internet of Things cloud control gateway adopts an independent SSL client certificate
  • an IOT terminal communication management method based on the IoT terminal communication management system according to any of the above embodiments is provided.
  • a cloud platform-based IoT terminal communication management and control method includes:
  • the Internet of Things cloud control gateway requests a key from the Internet of Things cloud platform and burns the obtained certificate into it;
  • the Internet of Things cloud control gateway sends an encrypted communication request to the target Internet of Things communication device through the IoT communication machine configured therein;
  • the target communication machine After the target communication machine passes the verification, it responds to the response packet with the dynamic key.
  • the process for the IoT cloud control gateway to request a key and burn to the Internet of Things cloud platform includes:
  • the Internet of Things cloud control gateway burning program requests a certificate to the Internet of Things cloud platform
  • the Internet of Things cloud platform forwards the request to the certificate server.
  • the Internet of Things cloud platform writes the approval certificate and writes it to the database, and returns to the burning program;
  • the process of the communication machine burning the communication address and the key includes:
  • IoT communication machine burning program applies for address and key to the Internet of Things cloud platform
  • the Internet of Things cloud platform randomly generates an address and a key is recorded in the database and delivered;
  • the cloud platform-based IoT terminal communication management method includes modifying the pairing key mode, specifically:
  • the control end initiates a modification command to the Internet of Things cloud platform.
  • the IoT cloud platform records the new key into the database and delivers it to the Internet of Things cloud control gateway;
  • the Internet of Things cloud control gateway sends a remote modification key burning command to the IoT communication machine
  • the point-to-point transmission between the Internet of Things terminals is adopted.
  • the data communication after the paired connection of the Internet of Things terminal adopts a dynamic rolling key.
  • the aforementioned program can be stored in a computer readable storage medium.
  • the program executes the steps of the above method embodiments when executed, and the foregoing storage medium includes various media that can store program codes, such as a RAM, a ROM, a magnetic disk, or an optical disk.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Health & Medical Sciences (AREA)
  • Computing Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides a cloud platform-based Internet-of-Things (IoT) terminal communication management and control system, comprising: an IoT cloud platform, which comprises control terminal binding, control terminal command forwarding, user client end identity authentication, and IoT terminal identify authentication; an IoT cloud control gateway, which comprises IoT terminal protocol conversion and IoT terminal internal control, provides local access authentication for the IoT terminal and the IoT communication processors, provides a local area network communication forwarding function, and provides a conversion bridge for upper communication of TCP/IP and lower communication of an IoT private protocol; IoT communication processors, which are configured in the IoT cloud control gateway and the IoT terminal correspondingly and are used for implementing interaction between the IoT cloud control gateway and the IoT terminal; and an IoT terminal, which is used for receiving a command of the IoT cloud control gateway, controlling an IoT sensor and a controller, and transmitting the states of the IoT sensor and the controller to the cloud control gateway through the IoT communication processors. On the other hand, the invention provides a cloud platform-based IoT terminal communication management and control method.

Description

基于云平台的物联网终端通信管控系统及其方法IoT terminal communication communication control system based on cloud platform and method thereof
相关申请Related application
本申请主张于2016年12月28日提交的、名称为“基于云平台的物联网终端通信管控系统及其方法”的中国发明专利申请:201611239215.4的优先权。The present application claims the priority of Chinese Patent Application No. 201611239215.4, entitled "Cloud-Based Internet of Things Terminal Communication Control System and Method", filed on December 28, 2016.
技术领域Technical field
本发明涉及物联网领域,尤其涉及一种基于云平台的物联网终端通信管控系统及其方法。The present invention relates to the field of Internet of Things, and in particular, to a cloud platform-based IOT terminal communication management system and method thereof.
背景技术Background technique
物联网作为未来信息网络领域发展的重要方向之一,已经在世界范围内受到了广泛关注。物联网被视为继计算机、互联网与移动通信网之后的世界信息产业第三次浪潮,其在世界范围内已经受到了广泛重视。国内外企业、大学、科研机构及相关国际标准化组织已经发起了对于物联网相关问题的研究。美国在2009年提出了“智慧地球”的概念,以大力发展物联网这一新兴技术。欧盟在第七框架下“RFID和物联网研究项目簇”中也开始了对于物联网技术的研究。我国也已将“物联网”明确列入《国家中长期科学技术发展规划(2006-2020年)》和2050年国家产业路线图。物联网的推广将会成为推进我国经济发展的又一驱动器,对优化我国产业结构,推进各行业的经济增长有重大意义。As one of the important directions for the development of the future information network field, the Internet of Things has received extensive attention worldwide. The Internet of Things is regarded as the third wave of the world information industry after computers, the Internet and mobile communication networks, and it has received extensive attention worldwide. Domestic and foreign enterprises, universities, scientific research institutions and relevant international standardization organizations have initiated research on issues related to the Internet of Things. In 2009, the United States proposed the concept of "smart planet" to vigorously develop the emerging technology of the Internet of Things. The European Union has also begun research on IoT technology in the "RFID and IoT Research Project Cluster" under the Seventh Framework. China has also explicitly included the “Internet of Things” in the National Medium- and Long-Term Science and Technology Development Plan (2006-2020) and the 2050 National Industry Roadmap. The promotion of the Internet of Things will become another driving force for promoting China's economic development, which is of great significance for optimizing China's industrial structure and promoting economic growth in various industries.
由于物联网业务与普通移动业务存在较大的差异性,大部分的物联网终端业务为小流量业务,且多为上行业务,同时物联网终端多为无人值守终端,需要对物联网终端防滥用、防盗用,并实现终端节电,但这 些新的需求通过当前移动网络管理技术是无法解决的。目前的物联网平台存在安全保密性差、数据传输速率低、传输距离短、用户终端接入繁琐等问题。Due to the large difference between the IoT service and the ordinary mobile service, most of the IoT terminal services are small-traffic services, and most of them are uplink services. At the same time, most IoT terminals are unattended terminals, which need to be protected against IoT terminals. Abuse, anti-theft, and terminal power savings, but these new requirements cannot be solved by current mobile network management technologies. The current IoT platform has problems such as poor security and confidentiality, low data transmission rate, short transmission distance, and cumbersome user terminal access.
发明内容Summary of the invention
针对如上缺陷,本发明提供一种基于云平台的物联网通信管控系统及其方法,用以实现创建安全保密性好、高数据传输速率、传输距离远且用户终端无缝接入的物联网平台。In view of the above drawbacks, the present invention provides a cloud platform-based Internet of Things communication management system and method thereof, which are used to realize an Internet of Things platform that creates a good security and confidentiality, a high data transmission rate, a long transmission distance, and seamless access of user terminals. .
根据本发明的一个方面,提供一种基于云平台的物联网终端通信管控系统,包括:According to an aspect of the present invention, a cloud platform-based IoT terminal communication management system is provided, including:
物联网云平台,其作用包括控件终端绑定、控件终端命令转发、用户客户端身份验证、物联网终端身份验证;The Internet of Things cloud platform, its functions include control terminal binding, control terminal command forwarding, user client identity verification, and IoT terminal identity verification;
物联网云控网关,其作用包括物联网终端协议转换和物联网终端内部控制,为物联网终端、物联网通信机提供本地接入认证,提供局域网通信转发功能,提供TCP/IP的上位通信与物联网私有协议的下位通信的转换桥;The Internet of Things cloud control gateway, its role includes IoT terminal protocol conversion and IoT terminal internal control, providing local access authentication for IoT terminals and IoT communication devices, providing LAN communication forwarding function, providing TCP/IP upper-level communication and a conversion bridge for the underlying communication of the Internet of Things proprietary protocol;
物联网通信机,分别配置在物联网云控网关和物联网终端中,用于物联网云控网关与物联网终端之间进行包括操作命令、状态信息的交互;The Internet of Things communication devices are respectively arranged in the Internet of Things cloud control gateway and the Internet of Things terminal, and are used for interaction between the Internet of Things cloud control gateway and the Internet of Things terminal, including operation commands and status information;
物联网终端,其作用包括接收所述物联网云控网关的命令,控制IoT传感器、控制器,以及通过物联网通信机发送IoT传感器控制器状态到物联网云控网关;The function of the Internet of Things terminal includes receiving the command of the Internet of Things cloud control gateway, controlling the IoT sensor, the controller, and transmitting the IoT sensor controller status to the Internet of Things cloud control gateway through the Internet of Things communication device;
其中,所述物联网云平台连接至物联网云控网关,所述物联网云控网关通过所述物联网通信机连接至所述物联网终端。The Internet of Things cloud platform is connected to the Internet of Things cloud control gateway, and the Internet of Things cloud control gateway is connected to the Internet of Things terminal by the Internet of Things communication machine.
其中,所述物联网私有协议的无线物理支持层包括2.4GHz全球开放ISM频段,支持六通道免许可数据收发。The wireless physical support layer of the Internet of Things proprietary protocol includes a 2.4 GHz global open ISM frequency band, and supports six-channel license-free data transmission and reception.
其中,所述物联网私有协议的无线物理支持层包括最大125频点跳频通信。The wireless physical support layer of the Internet of Things proprietary protocol includes a maximum 125 frequency point hopping communication.
所述物联网私有协议的数据链路层提供明文数据可靠通信;提供静态密钥可靠通信;提供动态密钥配对可靠通信。The data link layer of the Internet of Things proprietary protocol provides reliable communication of plaintext data; provides reliable communication of static keys; and provides reliable communication of dynamic key pairing.
进一步地,所述物联网云平台包括:Further, the Internet of Things cloud platform includes:
实现物联网通信机地址生成、远程烧写以及地址数据管理;Realize IoT communication machine address generation, remote programming and address data management;
实现物联网通信机密钥生成、远程烧写(或修改)及密钥数据管理;Realize IoT communication machine key generation, remote programming (or modification) and key data management;
协助物联网云控网关为物联网通信机加密通信提供密钥协商。Assisting the Internet of Things cloud control gateway to provide key negotiation for encrypted communication of IoT communication machines.
进一步地,所述物联网云控网关的作用包括:Further, the functions of the Internet of Things cloud control gateway include:
接收来自物联网终端的命令数据,根据命令数据及内容分发给对应的物联网终端。The command data from the Internet of Things terminal is received, and is distributed to the corresponding Internet of Things terminal according to the command data and content.
根据本发明的一种基于云平台的物联网终端通信管控系统,所述物联网云服务平台与互联网、以太网以桥方式连接。According to the cloud platform-based IoT terminal communication management system, the Internet of Things cloud service platform is connected to the Internet and Ethernet in a bridge manner.
根据本发明的一种基于云平台的物联网终端通信管控系统,所述物联网云平台与互联网间的通信采用SSL证书加密,且物联网云控网关采用独立SSL客户端证书。According to the cloud platform-based IoT terminal communication management and control system, the communication between the Internet of Things cloud platform and the Internet is encrypted by using an SSL certificate, and the Internet of Things cloud control gateway adopts an independent SSL client certificate.
根据本发明的另一方面,提供一种基于所述物联网终端通信管控系统的物联网终端通信管控方法,包括:According to another aspect of the present invention, a method for controlling communication control of an Internet of Things terminal based on the communication control system of the Internet of Things terminal includes:
物联网云控网关向物联网云平台请求密钥并将获取的证书烧录入其内;The Internet of Things cloud control gateway requests a key from the IoT cloud platform and burns the obtained certificate into it;
物联网云控网关通过配置于其内物联网通信机发送加密通信请求到目标物联网通信机;The Internet of Things cloud control gateway sends an encrypted communication request to the target IoT communication machine through the IoT communication machine configured therein;
目标通信机验证通过后,回应带动态密钥的应答包。After the target communicator passes the verification, it responds with a response packet with a dynamic key.
根据本发明的一种物联网终端通信管控方法,所述物联网终端之间采用可靠点对点传输。According to the communication control method of the Internet of Things terminal of the present invention, reliable point-to-point transmission is adopted between the Internet of Things terminals.
根据本发明的一种物联网终端通信管控方法,所述物联网终端配对连接后的数据通信采用动态滚动密钥。According to the communication control method of the Internet of Things terminal of the present invention, the data communication after the paired connection of the Internet of Things terminal adopts a dynamic rolling key.
根据上述发明内容可见,通过本发明提供的一种基于云平台的物联网终端通信管控系统及方法,利用了云服务平台的海量存储能力及极强的运算能力,利用物联网云控网关、通信机、物联网终端的通信加密,实现了物联网平台安全保密性好、高数据传输速率、传输距离远且用户终端无缝接入。According to the above invention, a cloud platform-based IOT terminal communication management and control system and method provided by the present invention can utilize the mass storage capability and the extremely powerful computing capability of the cloud service platform, and utilize the Internet of Things cloud control gateway and communication. The communication encryption of the machine and the Internet of Things terminal realizes the security and confidentiality of the Internet of Things platform, high data transmission rate, long transmission distance and seamless access of user terminals.
附图说明DRAWINGS
图1为根据本发明的实施例的基于云平台的物联网终端通信管控系统架构图;1 is a structural diagram of a cloud platform-based IoT terminal communication management system according to an embodiment of the present invention;
图2为本发明一个实施例的基于云平台的物联网终端通信管控方法的通信验证流程示意图;2 is a schematic diagram of a communication verification process of a cloud platform-based IOT terminal communication management and control method according to an embodiment of the present invention;
图3为物联网云控网关向云平台请求密钥并烧录的过程的流程示意图;FIG. 3 is a schematic flowchart of a process in which an IoT cloud control gateway requests a key from a cloud platform and burns it;
图4为通信机烧录通信地址和密钥的过程的流程示意图;4 is a schematic flow chart showing a process of programming a communication address and a key by a communication device;
图5为基于云平台的物联网终端通信管控方法包括修改所述配对密钥方式的流程示意图。FIG. 5 is a schematic diagram of a flow control method of an Internet of Things terminal based on a cloud platform, including modifying a method of pairing keys.
具体实施方式detailed description
为了使本发明的目的、技术方案以及优点更加清楚明白,以下结合附图以及实施例,对本发明进行进一步的详细说明。应当理解,此处所描述的具体实施例仅仅用以解释本发明,并不用于限制本发明。The present invention will be further described in detail below with reference to the accompanying drawings and embodiments. It is understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
图1为根据本发明的实施例的基于云平台的物联网终端通信管控系统架构图,如图1所示,所述基于云平台的物联网终端通信管控系统包 括:物联网云平台,其作用包括控件终端绑定、控件终端命令转发、用户客户端身份验证、物联网终端身份验证;物联网云控网关,作用包括物联网终端协议转换和物联网终端内部控制,为物联网终端、物联网通信机提供本地接入认证,提供局域网通信转发功能,提供TCP/IP的上位通信与物联网私有协议的下位通信的转换桥;物联网通信机,分别配置在物联网云控网关和物联网终端中,用于物联网云控网关与物联网终端之间进行包括操作命令、状态信息的交互;物联网终端,用于接收所述物联网云控网关的命令,控制IoT传感器、控制器,以及通过物联网通信机发送IoT传感器控制器状态到物联网云控网关。FIG. 1 is a schematic diagram of a cloud platform-based IoT terminal communication management system according to an embodiment of the present invention. As shown in FIG. 1 , the cloud platform-based IoT terminal communication management system includes: an Internet of Things cloud platform, and its function Including control terminal binding, control terminal command forwarding, user client authentication, IoT terminal authentication; Internet of Things cloud control gateway, including Internet of Things terminal protocol conversion and IoT terminal internal control, for IoT terminals, Internet of Things The communication machine provides local access authentication, provides local area network communication forwarding function, and provides a conversion bridge for upper communication of TCP/IP upper-level communication and IoT proprietary protocol; IoT communication machine is respectively configured in the Internet of Things cloud control gateway and IoT terminal The interaction between the cloud control gateway and the Internet of Things terminal of the Internet of Things includes operation commands and status information; the Internet of Things terminal receives commands of the Internet of Things cloud control gateway, controls the IoT sensor, the controller, and The IoT sensor controller status is sent to the Internet of Things cloud control gateway via the IoT communicator.
所述物联网云平台连接至物联网云控网关,所述物联网云控网关通过所述物联网通信机连接至所述物联网终端。所述物联网私有协议的无线物理支持层包括2.4GHz全球开放ISM频段,支持六通道免许可数据收发。所述物联网私有协议的无线物理支持层包括最大125频点跳频通信。所述物联网私有协议的数据链路层提供明文数据可靠通信;提供静态密钥可靠通信;提供动态密钥配对可靠通信。The Internet of Things cloud platform is connected to the Internet of Things cloud control gateway, and the Internet of Things cloud control gateway is connected to the Internet of Things terminal by the Internet of Things communication machine. The wireless physical support layer of the Internet of Things proprietary protocol includes a 2.4 GHz global open ISM band and supports six channels of license-free data transmission and reception. The wireless physical support layer of the Internet of Things proprietary protocol includes a maximum of 125 frequency point hopping communications. The data link layer of the Internet of Things proprietary protocol provides reliable communication of plaintext data; provides reliable communication of static keys; and provides reliable communication of dynamic key pairing.
无线物理支持层通过数据服务接入点和管理服务接入点提供两种服务。数据的发送和接收是通过物理层提供的数据服务来完成的,而管理服务负责完成以下任务:The wireless physical support layer provides two services through data service access points and management service access points. The sending and receiving of data is done through the data service provided by the physical layer, and the management service is responsible for the following tasks:
(1)无线电收发机的激活和关闭:设备根据收发数据与否来控制无线收发机的激活和关闭。(1) Activation and deactivation of the radio transceiver: The device controls the activation and deactivation of the radio transceiver according to whether the data is transmitted or received.
(2)在可用信道上进行能量检测(ED):信道能量检测用于测量所有可用信道中无线信号接收的功率强度,通过比较每个信道中功率强度的大小来为网络层提供信道选择的依据。这个能量检测在设备启动组网或入网之前进行,如果选择的是2.4GHz的频段,则会依次检测16个信道,并选择信道质量最好的那个作为自己的工作信道。(2) Energy detection (ED) on the available channel: Channel energy detection is used to measure the power intensity of wireless signal reception in all available channels, and to provide the basis for channel selection for the network layer by comparing the power intensity in each channel. . This energy detection is performed before the device starts networking or enters the network. If the 2.4 GHz band is selected, 16 channels are detected in turn, and the channel with the best channel quality is selected as its own working channel.
(3)所收数据的链路质量指示(LQI):链路质量指示通过对所接收到的无线信号进行解码操作,生成一个信噪比指标,通过这个信噪比指标,网络层或应用层可以知道所接收的数据帧,其无线信号的强度大小和质量好坏等信息,并以此判断该数据链路的优劣。在Mesh网络中,可以通过这个链路质量的大小判断并选择最优的路径来传输数据。(3) Link quality indication (LQI) of the received data: The link quality indicator generates a signal to noise ratio indicator by decoding the received wireless signal, and the network layer or the application layer is passed through the signal to noise ratio indicator. It can know the received data frame, the strength and quality of the wireless signal, and so on, and judge the quality of the data link. In a mesh network, data can be transmitted by judging and selecting an optimal path by the quality of the link.
(4)基于CSMA-CA(避免碰撞的载波侦测)机制对空闲信道进行评估:判断信道是否空闲的评估方式共有三种,分别为:①通过信道扫描来判断此信道的信号能量,当信号能量低于某一域值就认为信道空闲,反之则认为信道忙;②通过判断无线信号中扩频信号和载波频率的特征,来判断目标信道是否空闲;③前两种方式的结合,同时检测目标信道中信号强度和信号特征,来判断此信道是否空闲。设备通过检测信道是否空闲来选择自己什么时候接入此信道进行数据通信,从而有效避免设备间数据的竞争和冲突。(4) Evaluating the idle channel based on the CSMA-CA (Carrier Avoidance Carrier Detection) mechanism: There are three evaluation methods for judging whether the channel is idle, respectively: 1 Determine the signal energy of the channel by channel scanning, when the signal If the energy is lower than a certain value, the channel is considered to be idle, otherwise the channel is considered busy; 2, by determining the characteristics of the spread spectrum signal and the carrier frequency in the wireless signal, to determine whether the target channel is idle; 3 combining the first two modes and simultaneously detecting Signal strength and signal characteristics in the target channel to determine whether the channel is idle. The device selects when it accesses the channel for data communication by detecting whether the channel is idle, thereby effectively avoiding competition and conflict of data between devices.
(5)信道频率的选择:可以在多个可用信道之间进行选择与切换。例如,如果选择的是2.4GHz的频段,通过改变信道达到可选择的频段范围为2400MHz~2483.5MHz,如果选择的是915MHz的频段,能供选择的频段范围为902~928MHz。(5) Selection of channel frequency: selection and switching can be performed between multiple available channels. For example, if the frequency band of 2.4 GHz is selected, the range of the selectable frequency band is 2400 MHz to 2483.5 MHz by changing the channel. If the frequency band of 915 MHz is selected, the range of the available frequency band is 902 to 928 MHz.
数据链路层采用CSMA-CA机制接入到所选的工作信道,并通过两种服务接入点提供以下两种服务。The data link layer uses the CSMA-CA mechanism to access the selected working channel and provides the following two services through two service access points.
(1)MAC数据服务,通过公共部分的子层数据接入点MCPS-SAP接入。(1) The MAC data service is accessed through the sub-layer data access point MCPS-SAP of the public part.
(2)MAC管理服务,通过公共部分的子层管理接入点MLME-SAP接入。(2) MAC management service, which accesses the access point MLME-SAP through the sub-layer of the public part.
MAC子层通过上述的两种服务来处理接入物理无线信道等的事务,主要负责下列的几个任务:The MAC sublayer handles transactions such as accessing physical wireless channels through the above two services, and is mainly responsible for the following tasks:
(1)能产生网络信标(该设备是网络协调器)。在使用信标的PAN网络中,网络协调器可以根据需要产生信标帧,以使网络中的其它设备能跟踪、处理信标,从而可以与网络协调器保持同步。(1) A network beacon can be generated (the device is a network coordinator). In a PAN network using beacons, the network coordinator can generate beacon frames as needed to enable other devices in the network to track and process beacons so that they can be synchronized with the network coordinator.
(2)同信标保持同步。在使用信标的PAN网络中,网络中的其它设备如路由器和简化功能设备可以通过信标帧与协调器保持同步。(2) Keep the same with the beacon. In a PAN network using beacons, other devices in the network, such as routers and simplified function devices, can be synchronized with the coordinator via beacon frames.
(3)支持PAN的连接和断开。未连接入网络的设备通过产生一个连接请求命令,并将这个命令发送到命令数据包中指定的PAN标识符和网络地址的协调器上,完成入网连接;而一个已连接入网络的设备通过向协调器或自己的父节点发出断开连接请求,用于该设备离开该PAN网络。(3) Support PAN connection and disconnection. A device that is not connected to the network completes the network connection by generating a connection request command and sending the command to the coordinator of the PAN identifier and the network address specified in the command packet; and a device connected to the network passes the The coordinator or its own parent sends a disconnect request for the device to leave the PAN network.
(4)支持设备的安全性。设备间的通信有安全保障,任何设备之间的通信需要PAN标识符和网络地址都相匹配才可以,另外对发送失败的数据,有重发机制,可大大减少通信失败率,进一步保证数据安全可靠地传送至对方。(4) Support device security. The communication between devices is secure. Any communication between devices needs to match the PAN identifier and the network address. In addition, there is a retransmission mechanism for the data that fails to be transmitted, which can greatly reduce the communication failure rate and further ensure data security. Reliably transmitted to the other party.
(5)信道接入采用CSMA-CA接入机制。在信道接入模式上,具有避免碰撞的载波侦测(CSMA-CA)和保证时隙(GTS)两种模式,其中GTS类似预留的时域多重接入(TDMA)。在GTS模式下,欲通信的设备不用经过CSMA-CA中的随机竞争机制,即可取得信道的接入使用权,设备只在属于自己的时隙内激活并收发数据,这对紧急情况下的通信特别有用,但大多数情况下还是使用CSMA-CA的接入机制,可有效地避免竞争和冲突,也能提高信道利用率。(5) Channel access uses the CSMA-CA access mechanism. In the channel access mode, there are two modes of collision avoidance carrier detection (CSMA-CA) and guaranteed time slot (GTS), wherein the GTS is similar to reserved time domain multiple access (TDMA). In the GTS mode, the device to be communicated can obtain the access right of the channel without going through the random competition mechanism in the CSMA-CA, and the device activates and transmits and receives data only in its own time slot, which is in an emergency situation. Communication is particularly useful, but in most cases CSMA-CA's access mechanism is used to effectively avoid competition and conflicts, as well as improve channel utilization.
(6)处理和维护GTS机制。在有信标的PAN网络中,一些设备需要跟踪协调器发出的信标,这就需要对GTS进行管理和维护。网络中的其它设备可以通过对协调器发出请求,让其重新分配一个GTS或取消现存的GTS。(6) Processing and maintaining the GTS mechanism. In a beaconed PAN network, some devices need to track the beacons sent by the coordinator, which requires management and maintenance of the GTS. Other devices in the network can reassign a GTS or cancel an existing GTS by making a request to the coordinator.
(7)在对等的MAC实体之间提供一个可靠的通信链路。设备间的通信在MAC层,提供一个端到端的确认机制。即发送方的数据从MAC发送出去,接收方在正确收到数据时,会从MAC层回复一个确认帧给发送方,表示数据接收成功,否则发送方在一定时间内未收到接收方的确认帧时,则认为发送失败,会根据需要重发几次,直至数据发送成功,从而建立一个可靠的通信链路。在协议中规定了网络中存在以下两种设备。全功能设备(FFD):可以担任网络协调器,组建网络,让其它的FFD或者简化功能设备(RFD)加入网络,FFD可以作为整个网络的网关,通过这个网关,无线传感器网络可以和其它网络联系,比如常用的Internet,也可以和控制中心的PC机通过串口或USB口连接,进行数据的收发和指令的传送。FFD在网络中可以充当中转设备,具有路由的能力。(7) Provide a reliable communication link between peer MAC entities. Communication between devices provides an end-to-end acknowledgment mechanism at the MAC layer. That is, the sender's data is sent out from the MAC. When the receiver correctly receives the data, it will reply an acknowledgement frame from the MAC layer to the sender, indicating that the data is successfully received. Otherwise, the sender does not receive the acknowledgement from the receiver within a certain period of time. In the case of a frame, the transmission is considered to be unsuccessful and will be retransmitted several times as needed until the data is successfully transmitted, thereby establishing a reliable communication link. The following two devices exist in the network as specified in the agreement. Full-featured device (FFD): can act as a network coordinator, set up a network, and let other FFD or simplified function devices (RFDs) join the network. FFD can serve as a gateway for the entire network. Through this gateway, the wireless sensor network can contact other networks. For example, the commonly used Internet can also be connected to the PC of the control center through a serial port or a USB port to transmit and receive data and transmit commands. FFD can act as a transit device in the network and has the ability to route.
在一实施例中,所述物联网云平台进一步被配置为:实现物联网通信机地址生成、远程烧写以及地址数据管理;实现物联网通信机密钥生成、远程烧写(或修改)及密钥数据管理;协助物联网云控网关为物联网通信机加密通信提供密钥协商。In an embodiment, the Internet of Things cloud platform is further configured to: implement IoT communicator address generation, remote programming, and address data management; implement IoT communication key generation, remote programming (or modification), and Key data management; assists the Internet of Things cloud control gateway to provide key negotiation for IoT communication machine encrypted communication.
根据本发明的一种基于云平台的物联网终端通信管控系统,所述物联网云控网关的作用进一步包括:According to the cloud platform-based IoT terminal communication management and control system, the role of the Internet of Things cloud control gateway further includes:
接收来自物联网终端的命令数据,根据命令数据及内容分发给对应的物联网终端。The command data from the Internet of Things terminal is received, and is distributed to the corresponding Internet of Things terminal according to the command data and content.
根据本发明的一种基于云平台的物联网终端通信管控系统,所述物联网云服务平台与互联网、以太网以桥方式连接。According to the cloud platform-based IoT terminal communication management system, the Internet of Things cloud service platform is connected to the Internet and Ethernet in a bridge manner.
根据本发明的一种基于云平台的物联网终端通信管控系统,所述物联网云平台与互联网间的通信采用SSL证书加密,且物联网云控网关采用独立SSL客户端证书。According to the cloud platform-based IoT terminal communication management and control system, the communication between the Internet of Things cloud platform and the Internet is encrypted by using an SSL certificate, and the Internet of Things cloud control gateway adopts an independent SSL client certificate.
本发明的另一方面,提供了基于上述任一实施例的一种基于所述的物联网终端通信管控系统的物联网终端通信管控方法。In another aspect of the present invention, an IOT terminal communication management method based on the IoT terminal communication management system according to any of the above embodiments is provided.
图2为本发明一个实施例的基于云平台的物联网终端通信管控方法的通信验证流程示意图,如图2所示,基于云平台的物联网终端通信管控方法包括:2 is a schematic diagram of a communication verification process of a cloud platform-based IoT terminal communication management and control method according to an embodiment of the present invention. As shown in FIG. 2, a cloud platform-based IoT terminal communication management and control method includes:
S1、物联网云控网关向物联网云平台请求密钥并将获取的证书烧录入其内;S1. The Internet of Things cloud control gateway requests a key from the Internet of Things cloud platform and burns the obtained certificate into it;
S2、物联网云控网关通过配置于其内物联网通信机发送加密通信请求到目标物联网通信机;S2. The Internet of Things cloud control gateway sends an encrypted communication request to the target Internet of Things communication device through the IoT communication machine configured therein;
S3、目标通信机验证通过后,回应带动态密钥的应答包。S3. After the target communication machine passes the verification, it responds to the response packet with the dynamic key.
具体地,如图3所示,所述物联网云控网关向物联网云平台请求密钥并烧录的过程包括:Specifically, as shown in FIG. 3, the process for the IoT cloud control gateway to request a key and burn to the Internet of Things cloud platform includes:
S101、物联网云控网关烧录程序向物联网云平台请求证书;S101, the Internet of Things cloud control gateway burning program requests a certificate to the Internet of Things cloud platform;
S102、物联网云平台向证书服务器转发请求;S102. The Internet of Things cloud platform forwards the request to the certificate server.
S103、物联网云平台收到审批证书后写入数据库,并返回到烧录程序;S103. The Internet of Things cloud platform writes the approval certificate and writes it to the database, and returns to the burning program;
S104、将证书烧录到物联网云控网关嵌入式模块。S104. Burn the certificate to the embedded module of the Internet of Things cloud control gateway.
具体地,如图4所示,通信机烧录通信地址和密钥的过程包括:Specifically, as shown in FIG. 4, the process of the communication machine burning the communication address and the key includes:
S201、IoT通信机烧录程序向物联网云平台申请地址及密钥;S201, IoT communication machine burning program applies for address and key to the Internet of Things cloud platform;
S202、物联网云平台随机产生地址及密钥记入数据库并下发;S202, the Internet of Things cloud platform randomly generates an address and a key is recorded in the database and delivered;
S203、将地址和密钥烧录到IoT通信机。S203. Burn the address and the key to the IoT communication machine.
进一步地,如图5所示,所述基于云平台的物联网终端通信管控方法包括修改所述配对密钥方式,具体为:Further, as shown in FIG. 5, the cloud platform-based IoT terminal communication management method includes modifying the pairing key mode, specifically:
S301、控制端发起修改命令到物联网云平台;S301. The control end initiates a modification command to the Internet of Things cloud platform.
S302、物联网云平台随机产生新密钥;S302, the Internet of Things cloud platform randomly generates a new key;
S303、物联网云平台将新密钥记入数据库并下发到物联网云控网关;S303. The IoT cloud platform records the new key into the database and delivers it to the Internet of Things cloud control gateway;
S304、物联网云控网关发送远程修改密钥烧录命令到IoT通信机;S304, the Internet of Things cloud control gateway sends a remote modification key burning command to the IoT communication machine;
S305、IoT通信机修改密钥。S305, IoT communication machine modify the key.
根据本发明一种物联网终端通信管控方法,所述物联网终端之间采用可靠点对点传输。According to the communication control method of the Internet of Things terminal of the present invention, the point-to-point transmission between the Internet of Things terminals is adopted.
根据本发明的一种物联网终端通信管控方法,所述物联网终端配对连接后的数据通信采用动态滚动密钥。According to the communication control method of the Internet of Things terminal of the present invention, the data communication after the paired connection of the Internet of Things terminal adopts a dynamic rolling key.
本领域普通技术人员可以理解:实现上述各方法实施例的全部或部分步骤可以通过程序指令的相关硬件来完成。前述的程序可以存储于一计算机可读存储介质中。该程序在执行时执行上述各方法实施例的步骤,而前述的存储介质包括:RAM、ROM、磁碟或者光盘等各种可以存储程序代码的介质。It will be understood by those skilled in the art that all or part of the steps of implementing the above method embodiments may be performed by related hardware of the program instructions. The aforementioned program can be stored in a computer readable storage medium. The program executes the steps of the above method embodiments when executed, and the foregoing storage medium includes various media that can store program codes, such as a RAM, a ROM, a magnetic disk, or an optical disk.
最后应说明的是:以上所述实施例仅表达了本发明的几种实施方式,其描述较为具体和详细,但并不能因此理解为对本发明专利范围的限制。应当指出的是,对于本领域的普通技术人员来说,在不脱离本发明构思的前提下,还可以做出若干变形和改进,这些都属于本发明的保护范围。因此,本发明专利的保护范围应该以所附权利要求为准。It should be noted that the above-mentioned embodiments are merely illustrative of several embodiments of the present invention, and the description thereof is more specific and detailed, but is not to be construed as limiting the scope of the invention. It should be noted that a number of variations and modifications may be made by those skilled in the art without departing from the spirit and scope of the invention. Therefore, the scope of the invention should be determined by the appended claims.

Claims (10)

  1. 一种基于云平台的物联网终端通信管控系统,其特征在于,包括:物联网云平台,用于控件终端绑定、控件终端命令转发、用户客户端身份验证、物联网终端身份验证;A cloud platform-based IoT terminal communication management and control system, comprising: an Internet of Things cloud platform, which is used for control terminal binding, control terminal command forwarding, user client identity verification, and IoT terminal identity verification;
    物联网云控网关,用于物联网终端协议转换和物联网终端内部控制,为物联网终端、物联网通信机提供本地接入认证,提供局域网通信转发功能,提供TCP/IP的上位通信与物联网私有协议的下位通信的转换桥;The Internet of Things cloud control gateway is used for IoT terminal protocol conversion and IoT terminal internal control, providing local access authentication for IoT terminals and IoT communication devices, providing LAN communication forwarding function, and providing TCP/IP upper-level communication and communication. a conversion bridge for the lower communication of the networked private protocol;
    物联网通信机,分别配置在物联网云控网关和物联网终端中,用于物联网云控网关与物联网终端之间进行操作命令、状态信息的交互;The Internet of Things communication devices are respectively arranged in the Internet of Things cloud control gateway and the Internet of Things terminal, and are used for interaction between operation commands and status information between the Internet of Things cloud control gateway and the Internet of Things terminal;
    物联网终端,用于接收所述物联网云控网关的命令,控制IoT传感器、控制器,以及通过物联网通信机发送IoT传感器控制器状态到物联网云控网关;The Internet of Things terminal is configured to receive the command of the Internet of Things cloud control gateway, control the IoT sensor, the controller, and send the IoT sensor controller status to the Internet of Things cloud control gateway through the IoT communication machine;
    其中,所述物联网云平台连接至物联网云控网关,所述物联网云控网关通过所述物联网通信机连接至所述物联网终端。The Internet of Things cloud platform is connected to the Internet of Things cloud control gateway, and the Internet of Things cloud control gateway is connected to the Internet of Things terminal by the Internet of Things communication machine.
  2. 根据权利要求1所述的基于云平台的物联网终端通信管控系统,其中,所述物联网私有协议的无线物理支持层包括2.4GHz全球开放ISM频段,支持六通道免许可数据收发。The cloud platform-based Internet of Things terminal communication management system according to claim 1, wherein the wireless physical support layer of the Internet of Things proprietary protocol comprises a 2.4 GHz global open ISM frequency band, and supports six-channel license-free data transmission and reception.
  3. 根据权利要求1所述的基于云平台的物联网终端通信管控系统,其中,所述物联网私有协议的无线物理支持层包括最大125频点跳频通信。The cloud platform-based Internet of Things terminal communication management system according to claim 1, wherein the wireless physical support layer of the Internet of Things proprietary protocol comprises a maximum 125 frequency point frequency hopping communication.
  4. 根据权利要求1所述的基于云平台的物联网终端通信管控系统,其特征在于,所述物联网云平台被适配为:The cloud platform-based IoT terminal communication management and control system according to claim 1, wherein the Internet of Things cloud platform is adapted to:
    实现物联网通信机地址生成、远程烧写以及地址数据管理;Realize IoT communication machine address generation, remote programming and address data management;
    实现物联网通信机密钥生成、远程烧写或修改及密钥数据管理;Realize IoT communication key generation, remote programming or modification and key data management;
    协助物联网云控网关为物联网通信机加密通信提供密钥协商。Assisting the Internet of Things cloud control gateway to provide key negotiation for encrypted communication of IoT communication machines.
  5. 根据权利要求1所述的基于云平台的物联网终端通信管控系统,其特征在于,所述物联网云控网关被适配为:The cloud platform-based IoT terminal communication management and control system according to claim 1, wherein the Internet of Things cloud control gateway is adapted to:
    接收来自物联网终端的命令数据,根据命令数据及内容分发给对应的物联网终端。The command data from the Internet of Things terminal is received, and is distributed to the corresponding Internet of Things terminal according to the command data and content.
  6. 根据权利要求1所述的基于云平台的物联网终端通信管控系统,其特征在于,所述物联网云平台与互联网、以太网以桥方式连接。The cloud platform-based IoT terminal communication management and control system according to claim 1, wherein the Internet of Things cloud platform is connected to the Internet and Ethernet in a bridge manner.
  7. 根据权利要求1所述的基于云平台的物联网终端通信管控系统,其特征在于,所述物联网云平台与互联网间的通信采用SSL证书加密,且物联网云控网关采用独立SSL客户端证书。The cloud platform-based IoT terminal communication management and control system according to claim 1, wherein the communication between the Internet of Things cloud platform and the Internet is encrypted by using an SSL certificate, and the Internet of Things cloud control gateway adopts an independent SSL client certificate. .
  8. 一种基于云平台的物联网终端通信管控方法,用于如权利要求1-7中任一项所述的系统的方法,其特征在于,所述方法包括以下步骤:A cloud platform-based IoT terminal communication management method, the method for a system according to any one of claims 1 to 7, characterized in that the method comprises the following steps:
    S1、物联网云控网关向物联网云平台请求密钥并将获取的证书烧录入其内;S1. The Internet of Things cloud control gateway requests a key from the Internet of Things cloud platform and burns the obtained certificate into it;
    S2、物联网云控网关通过配置于其内物联网通信机发送加密通信请求到目标物联网通信机;S2. The Internet of Things cloud control gateway sends an encrypted communication request to the target Internet of Things communication device through the IoT communication machine configured therein;
    S3、目标通信机验证通过后,回应带动态密钥的应答包。S3. After the target communication machine passes the verification, it responds to the response packet with the dynamic key.
  9. 根据权利要求8所述的基于云平台的物联网终端通信管控方法,其特征在于,所述物联网终端之间采用点对点可靠性传输。The cloud platform-based IoT terminal communication management and control method according to claim 8, wherein the Internet of Things terminals adopt point-to-point reliability transmission.
  10. 根据权利要求8或9所述的基于云平台的物联网终端通信管控方法,其特征在于,所述物联网终端配对连接后的数据通信采用动态滚动密钥。The cloud platform-based IoT terminal communication management and control method according to claim 8 or 9, wherein the data communication after the IoT terminal is paired and connected adopts a dynamic rolling key.
PCT/CN2017/118877 2016-12-28 2017-12-27 Cloud platform-based internet-of-things terminal communication management and control system and method WO2018121572A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201611239215.4 2016-12-28
CN201611239215.4A CN106790590A (en) 2016-12-28 2016-12-28 Terminal communication of internet of things managing and control system and its method based on cloud platform

Publications (1)

Publication Number Publication Date
WO2018121572A1 true WO2018121572A1 (en) 2018-07-05

Family

ID=58923192

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2017/118877 WO2018121572A1 (en) 2016-12-28 2017-12-27 Cloud platform-based internet-of-things terminal communication management and control system and method

Country Status (2)

Country Link
CN (1) CN106790590A (en)
WO (1) WO2018121572A1 (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112019639A (en) * 2020-09-18 2020-12-01 国网山东省电力公司青岛供电公司 Dynamic Internet of things equipment access platform and method
CN112218294A (en) * 2020-09-08 2021-01-12 深圳市燃气集团股份有限公司 5G-based access method and system for Internet of things equipment and storage medium
CN112738042A (en) * 2020-12-22 2021-04-30 上海上实龙创智能科技股份有限公司 Internet of things equipment model based on MQTT protocol and data penetration method thereof
CN113783868A (en) * 2021-09-08 2021-12-10 广西东信数建信息科技有限公司 Method and system for protecting security of gate Internet of things based on commercial password
CN114584429A (en) * 2022-03-30 2022-06-03 中用科技有限公司 Industrial intelligent internet of things gateway
US11369006B2 (en) 2020-06-19 2022-06-21 Urbit Group LLC IoT gateway device, system, and computer program product

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106790590A (en) * 2016-12-28 2017-05-31 珠海国芯云科技有限公司 Terminal communication of internet of things managing and control system and its method based on cloud platform
CN108769165B (en) * 2018-05-17 2021-12-24 深圳市信锐网科技术有限公司 Data processing method in Internet of things and Internet of things access system
CN109005166A (en) * 2018-07-23 2018-12-14 合沃物联技术(南京)有限公司 A kind of middleware system for Internet of things and its multi protocol conversion method
CN109495314B (en) * 2018-12-07 2020-12-18 达闼科技(北京)有限公司 Communication method, device and medium of cloud robot and electronic equipment
CN109857446B (en) * 2019-02-28 2022-03-18 珠海市横琴新区芯云平台科技有限公司 Open type Internet of things system and method based on cloud platform
CN110351257B (en) * 2019-06-27 2021-03-23 绿城科技产业服务集团有限公司 Distributed Internet of things security access system
CN110535823B (en) * 2019-07-09 2021-10-22 中移(杭州)信息技术有限公司 Pseudo code-based interaction method and system and pseudo code service platform
CN112751664B (en) * 2019-10-29 2023-11-28 中国移动通信有限公司研究院 Internet of things networking method, internet of things networking device and computer readable storage medium
CN111770100B (en) * 2020-06-30 2022-08-16 贵州云尚物联科技股份有限公司 Method and system for verifying safe access of external equipment to Internet of things terminal
CN112512024B (en) * 2021-02-05 2021-05-11 信联科技(南京)有限公司 5G network-oriented Internet of things terminal security convergence access method and system
CN113556269B (en) * 2021-07-29 2023-04-28 中国电力科学研究院有限公司 SAP client performance test method, system, electronic equipment and storage medium
CN114500601B (en) * 2022-02-09 2024-03-26 南京戎光软件科技有限公司 Internet of things system based on management engine

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105610706A (en) * 2016-03-09 2016-05-25 北京科技大学 Internet-of-things control system oriented intelligent gateway platform
CN105898893A (en) * 2016-05-31 2016-08-24 北京乐美无限科技有限公司 Method for realizing full-duplex communication between mobile terminal and IOT equipment
CN205647581U (en) * 2016-03-16 2016-10-12 无锡十月中宸科技有限公司 Cloud safe gateway and cloud safety coefficient
CN106790588A (en) * 2016-12-28 2017-05-31 珠海国芯云科技有限公司 A kind of platform of internet of things based on cloud computing creates system and method
CN106790590A (en) * 2016-12-28 2017-05-31 珠海国芯云科技有限公司 Terminal communication of internet of things managing and control system and its method based on cloud platform

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102137069B (en) * 2010-01-27 2016-08-03 中兴通讯股份有限公司 A kind of Internet of Things application realization method and system
CN102196529A (en) * 2010-03-19 2011-09-21 中兴通讯股份有限公司 Access method and system for wireless sensor network
CN101917483B (en) * 2010-08-18 2015-11-25 中国电信股份有限公司 The implementation method of terminal communication of internet of things management and control, system and equipment
CN103488160B (en) * 2013-10-18 2016-05-04 国家电网公司 Transformer station's real-time monitoring system
CN104811433B (en) * 2014-11-09 2017-11-28 张晓华 The distributed Internet of things system and implementation method of a kind of C/S frameworks

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105610706A (en) * 2016-03-09 2016-05-25 北京科技大学 Internet-of-things control system oriented intelligent gateway platform
CN205647581U (en) * 2016-03-16 2016-10-12 无锡十月中宸科技有限公司 Cloud safe gateway and cloud safety coefficient
CN105898893A (en) * 2016-05-31 2016-08-24 北京乐美无限科技有限公司 Method for realizing full-duplex communication between mobile terminal and IOT equipment
CN106790588A (en) * 2016-12-28 2017-05-31 珠海国芯云科技有限公司 A kind of platform of internet of things based on cloud computing creates system and method
CN106790590A (en) * 2016-12-28 2017-05-31 珠海国芯云科技有限公司 Terminal communication of internet of things managing and control system and its method based on cloud platform

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11369006B2 (en) 2020-06-19 2022-06-21 Urbit Group LLC IoT gateway device, system, and computer program product
CN112218294A (en) * 2020-09-08 2021-01-12 深圳市燃气集团股份有限公司 5G-based access method and system for Internet of things equipment and storage medium
CN112218294B (en) * 2020-09-08 2021-08-27 深圳市燃气集团股份有限公司 5G-based access method and system for Internet of things equipment and storage medium
CN112019639A (en) * 2020-09-18 2020-12-01 国网山东省电力公司青岛供电公司 Dynamic Internet of things equipment access platform and method
CN112019639B (en) * 2020-09-18 2022-04-15 国网山东省电力公司青岛供电公司 Dynamic Internet of things equipment access platform and method
CN112738042A (en) * 2020-12-22 2021-04-30 上海上实龙创智能科技股份有限公司 Internet of things equipment model based on MQTT protocol and data penetration method thereof
CN113783868A (en) * 2021-09-08 2021-12-10 广西东信数建信息科技有限公司 Method and system for protecting security of gate Internet of things based on commercial password
CN113783868B (en) * 2021-09-08 2023-09-01 广西东信数建信息科技有限公司 Method and system for protecting Internet of things safety of gate based on commercial password
CN114584429A (en) * 2022-03-30 2022-06-03 中用科技有限公司 Industrial intelligent internet of things gateway

Also Published As

Publication number Publication date
CN106790590A (en) 2017-05-31

Similar Documents

Publication Publication Date Title
WO2018121572A1 (en) Cloud platform-based internet-of-things terminal communication management and control system and method
WO2018121574A1 (en) Internet-of-things communication apparatus and method
US11863556B2 (en) Configuring access for internet-of-things and limited user interface devices
RU2615773C2 (en) Method and apparatus for maintaining association in wireless local area network (lan)
EP2798887B1 (en) Low cost proximity pairing mechanism in wireless personal area networks
EP3735787B1 (en) System and method for end-to-end secure communication in device-to-device communication networks
US8149745B2 (en) Wireless communication system, wireless communication device, wireless communication method, and program
US20160278090A1 (en) Method and controller for controlling at least one load
JP2009500969A5 (en)
US10506497B2 (en) Service processing method and apparatus
US20040078566A1 (en) Generating multiple independent networks on shared access points
KR20130128347A (en) Method, apparatus, and computer program product for controlling network access to guest apparatus based on presence of hosting apparatus
WO2011116617A1 (en) Combination network and method for accessing network of wireless sensor network terminal
Sisinni et al. Enhanced flexible LoRaWAN node for industrial IoT
CN110022374A (en) Method for connecting network, device, communication equipment and storage medium based on Internet of Things
CN101192929B (en) An access method, system and device for short distance wireless network
US9843444B2 (en) Communication apparatus, control method, and storage medium
US10153961B2 (en) Communication device, communication method, and communication system
Accettura et al. Addressing scalable, optimal, and secure communications over LoRa networks: Challenges and research directions
JP6283808B2 (en) Wireless access point and program
Tomar et al. LoRa network for cities Private and complete secured by design
Tefek et al. Malicious relay detection using sentinels: A stochastic geometry framework
TWI713793B (en) IOT SYSTEM USING IPv6 AND OPERATING METHOD THEREOF
Fardin et al. Design, Implementation and Evaluation of a Gateway-Device Coordination Protocol to enable Edge Computing over LoRaWAN
Sisinni et al. Evaluating the joint use of LoRaWAN and Bluetooth mesh to improve survivability for critical sensor applications

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17885904

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 02/10/2019)

122 Ep: pct application non-entry in european phase

Ref document number: 17885904

Country of ref document: EP

Kind code of ref document: A1