WO2018218764A1 - Method and device for remote wireless data transmission, and computer readable storage medium - Google Patents

Method and device for remote wireless data transmission, and computer readable storage medium Download PDF

Info

Publication number
WO2018218764A1
WO2018218764A1 PCT/CN2017/094132 CN2017094132W WO2018218764A1 WO 2018218764 A1 WO2018218764 A1 WO 2018218764A1 CN 2017094132 W CN2017094132 W CN 2017094132W WO 2018218764 A1 WO2018218764 A1 WO 2018218764A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
data
authorized
transmission channel
remote wireless
Prior art date
Application number
PCT/CN2017/094132
Other languages
French (fr)
Chinese (zh)
Inventor
袁晖
李凝华
Original Assignee
深圳市科迈爱康科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 深圳市科迈爱康科技有限公司 filed Critical 深圳市科迈爱康科技有限公司
Publication of WO2018218764A1 publication Critical patent/WO2018218764A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/141Setup of application sessions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L5/00Arrangements affording multiple use of the transmission path
    • H04L5/14Two-way operation using the same type of signal, i.e. duplex
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/104Peer-to-peer [P2P] networks

Definitions

  • the present invention relates to the field of wireless communications, and in particular, to a remote wireless data transmission method, apparatus, and computer readable storage medium.
  • the remote device sends handshake data to the local data server through the Internet cloud to implement one-way data communication after identity authentication. At the same time, data transmission between the off-site device and the local data server has been publicly revealed before the remote device is authorized.
  • duplex communication the same transmission line is used for identity verification and data communication, which causes excessive load on the server load, and the complexity of identity authentication and data communication between different platforms is large during data communication. Information exchange is long. And between the successful authentication, the data communication line has been publicly displayed, which is vulnerable to network attacks.
  • the main object of the present invention is to provide a remote wireless data transmission method and apparatus, which aims to solve the technical problem of data transmission and data privacy caused by communication lines in the process of remote wireless communication transmission.
  • the present invention provides a remote wireless data transmission method, including:
  • the method further includes:
  • the step of canceling the data communication transmission channel corresponding to the authorized terminal after detecting that the authorized terminal stops the communication operation comprises:
  • the data interaction stop time of the authorized terminal is calculated.
  • the method further includes:
  • the method further includes:
  • the data communication transmission channel is locked and an unlock password of the data communication transmission channel is generated to stop data interaction.
  • the method further includes:
  • the data communication transmission channel After receiving the corresponding unlocking password of the data communication transmission channel, the data communication transmission channel is unlocked, and the data communication transmission channel is restored.
  • the step after receiving the corresponding unlock password of the data communication transmission channel includes:
  • the method before the step of authenticating the authenticated terminal after the terminal is authenticated, the method further includes:
  • the terminal when receiving the handshake data sent by the terminal, acquiring the identity information of the terminal according to the handshake data, and querying, in the terminal information table, whether the terminal identity information is registered according to the identity information Previously, it also included:
  • the step of authorizing the authenticated terminal comprises:
  • the step of acquiring the authorized content of the terminal according to the identity information further includes:
  • the step of extracting the terminal identifier of the terminal that has been authenticated, and the step of searching for the authorization information of the terminal in the preset terminal connection list on the condition of the terminal identifier further includes:
  • the content of the authorization information is read based on the corresponding authorization information that has been found to the terminal, so that the terminal accesses the service of the data server with the content of the authorization information.
  • the step of creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner further includes:
  • the identity identifier of each terminal is associated with the data communication transmission channel corresponding to the terminal, to identify the transmitting terminal of the received communication data according to the identity identifier.
  • the method further includes:
  • a data communication transmission channel is created based on the corresponding network interface of the data communication transmission channel application, wherein the authentication application user interface is different from the data communication transmission channel application network interface.
  • the present invention further provides a remote wireless data transmission apparatus, characterized in that the apparatus comprises: a memory, a processor, and a computer program stored on the memory and operable on the processor, The steps of the remote wireless data transmission method as described above are implemented when the computer program is executed by the processor.
  • the present invention also provides a computer readable storage medium having a remote wireless data transmission program stored thereon, the remote wireless data transmission program being executed by a processor to implement the remote wireless data transmission method as described above A step of.
  • the invention authorizes the terminal corresponding to the sending handshake data according to the received handshake data, so that the authorized terminal can access the data server; and creates a data communication transmission channel corresponding to the authorized terminal in a preset creation manner;
  • the data communication transmission channel performs duplex communication with the authorized terminal. Realize peer-to-peer duplex communication between the authorized terminal and the data server to improve data transmission.
  • the data communication transmission channel of the duplex communication is inconsistent with the identity authentication channel. Before the identity verification succeeds, the data communication transmission channel is not disclosed, so as to achieve the beneficial effect of avoiding external attacks on the data transmission channel.
  • FIG. 1 is a schematic structural diagram of a terminal/device in a hardware operating environment according to an embodiment of the present invention
  • FIG. 2 is a schematic flow chart of a first embodiment of a remote wireless data transmission method according to the present invention
  • FIG. 3 is a schematic flowchart of a second embodiment of a remote wireless data transmission method according to the present invention.
  • FIG. 4 is a schematic flow chart of a third embodiment of a remote wireless data transmission method according to the present invention.
  • the main solution of the embodiment of the present invention is: after authenticating the terminal, authorizing the authenticated terminal to enable the authorized terminal to access the data server; and creating data corresponding to the authorized terminal in a preset creation manner. a communication transmission channel; performing duplex communication with the authorized terminal through the data communication transmission channel.
  • the same transmission line is used for the identity verification and the data communication, which causes the server to load too much bandwidth, and in the data communication, the identity authentication and the data communication complexity between different platforms are large. Causes information exchange to be longer. And between the successful authentication, the data communication line has been publicly displayed, which is vulnerable to cyber attacks.
  • the present invention provides a solution for the terminal to use different communication channels for identity verification and data communication, and before the terminal device implements identity authentication, the data transmission channel is hidden, and the unauthorized person cannot know, and then cannot The data transmission channel performs directed data attack and interception. And establishing a point-to-point data transmission channel with the terminal device and the data management server, improving data transmission efficiency and reducing the delay of information exchange.
  • FIG. 1 is a schematic structural diagram of a terminal in a hardware operating environment involved in an embodiment of a remote wireless data transmission method according to the present invention.
  • the terminal in the embodiment of the present invention may be a PC, or may be a smart phone, a tablet computer, an e-book reader, and an MP3 (Moving Picture). Experts Group Audio Layer III, Motion Picture Expert Compress Standard Audio Level 3) Player, MP4 (Moving Picture Experts Group Audio Layer IV, dynamic video experts compress standard audio layers 3) Players, portable computers and other portable terminal devices with display functions.
  • MP3 Motion Picture Expert Compress Standard Audio Level 3
  • MP4 Moving Picture Experts Group Audio Layer IV, dynamic video experts compress standard audio layers 3 Players
  • portable computers and other portable terminal devices with display functions may be a PC, or may be a smart phone, a tablet computer, an e-book reader, and an MP3 (Moving Picture). Experts Group Audio Layer III, Motion Picture Expert Compress Standard Audio Level 3) Player, MP4 (Moving Picture Experts Group Audio Layer IV, dynamic video experts compress standard audio layers 3) Players, portable computers and other portable terminal devices with display functions.
  • MP3 Motion Picture Experts Group Audio Layer III, Motion Picture
  • the terminal may include a processor 300, such as a CPU, a network interface 102, a user interface 101, a memory 200, and a communication bus 100.
  • the communication bus 100 is used to implement connection communication between these components.
  • the user interface 101 can include a display, an input unit such as a keyboard, and the optional user interface 101 can also include a standard wired interface, a wireless interface.
  • the network interface 102 can optionally include a standard wired interface, a wireless interface (such as a WI-FI interface).
  • the memory 200 can be a high speed RAM memory or a stable memory (non-volatile) Memory), such as disk storage.
  • the memory 200 can also optionally be a storage device independent of the aforementioned processor 300.
  • terminal structure shown in FIG. 1 does not constitute a limitation to the terminal, and may include more or less components than those illustrated, or a combination of certain components, or different component arrangements.
  • an operating system may be included in the memory 1005 as a computer storage medium.
  • a network communication module may be included in the memory 1005 as a computer storage medium.
  • a user interface module may be included in the memory 1005 as a computer storage medium.
  • a remote wireless data transmission program may be included in the memory 1005 as a computer storage medium.
  • the network interface 102 is mainly used to connect to a background server for data communication with a background server;
  • the user interface 101 is mainly used for connecting a client (user end) to perform data communication with the client;
  • the processor 300 can be used to call a remote wireless data transfer program stored in the memory 200 and perform the following operations:
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • the data interaction stop time of the authorized terminal is calculated.
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • the data communication transmission channel is locked and an unlock password of the data communication transmission channel is generated to stop data interaction.
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • the data communication transmission channel After receiving the corresponding unlocking password of the data communication transmission channel, the data communication transmission channel is unlocked, and the data communication transmission channel is restored.
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • the authorized content of each terminal is set, and the authorized content is saved in association with the identity information of the terminal.
  • the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also performs the following operations.
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • the content of the authorization information is read based on the corresponding authorization information that has been found to the terminal, so that the terminal accesses the service of the data server with the content of the authorization information.
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • the identity identifier of each terminal is associated with the data communication transmission channel corresponding to the terminal, to identify the transmitting terminal of the received communication data according to the identity identifier.
  • processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
  • a data communication transmission channel is created based on the corresponding network interface of the data communication transmission channel application, wherein the authentication application user interface is different from the data communication transmission channel application network interface.
  • FIG. 2 is a first embodiment of remote wireless data transmission according to the present invention, and the method specifically includes the following contents:
  • Step S10 after authenticating the terminal, authorizing the terminal that has passed the authentication, so that the authorized terminal accesses the data server;
  • the corresponding terminal authorized by the data server is authorized to the terminal, so that the terminal can access the data server and perform data interaction operation of duplex communication.
  • the terminal authorization is an authorization mode that has been constructed in the data server. Specifically, an active terminal connection list may be created, where the terminal connection list includes the authorized terminal information, and the terminal The information flag is set to authorize the accessible terminal to enable the terminal to access the corresponding information of the terminal connection list when accessing the data server.
  • Step S20 creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner
  • the data communication transmission channel corresponding to the authorized terminal is created in a preset creation manner.
  • the preset creation mode specifically the P2P penetration mode, is defined as a point-to-point or end-to-end terminal connection manner, that is, establishing a point-to-point data transmission channel between the authorized terminal and the data management server, so that the authorized terminal and the authorized terminal
  • the data management server performs direct data transmission communication between the two parties, and does not need to perform data processing through a third end such as an intermediate data server.
  • the data transmission channel is only applied to data transmission communication between the single authorized terminal and the data management server. That is, each of the authorized terminals has a separate created data communication transmission channel.
  • the step of creating a data communication transmission channel to the authorized terminal after the authorization of the terminal that is, the step of creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner, further includes:
  • a data communication transmission channel corresponding to each authorized terminal is created; and the identity identifier of each terminal is associated with the data communication transmission channel corresponding to the terminal, so as to identify and receive according to the identity identifier.
  • the transmitting terminal of the communication data is a data communication transmission channel corresponding to each authorized terminal.
  • a data communication transmission channel identified by each authorized terminal is created. That is, the data communication transmission channels are one-to-one correspondence, and each authorized terminal corresponds to one data communication transmission channel. And each data communication transmission channel is identified by the corresponding authorized terminal, and is isolated from other data communication transmission channels, so that each authorized terminal performs duplex communication with the data server through the corresponding data communication transmission channel, thereby avoiding data congestion. , affecting the efficiency of data interaction.
  • the data communication transmission channel identified by the authorized terminal is associated with the authorized terminal identity corresponding to the identifier, and the association relationship is saved. The corresponding authorized terminal is identified to the corresponding data communication transmission channel according to the association relationship of the identity identifier.
  • Step S30 performing duplex communication with the authorized terminal by using the data communication transmission channel.
  • the data communication transmission channel created by the authorized terminal is configured to perform data interaction between the authorized terminal and the data management server, and the data interaction operation direction is duplex communication.
  • Its duplex communication is defined as the simultaneous (instantaneous) bidirectional transmission of signals (A ⁇ B and B ⁇ A); the simultaneous B ⁇ A of A ⁇ B is instantaneously synchronized.
  • the user can operate the input device of the data server by means of remote control to query and obtain the required data information.
  • the administrator of the data server side can communicate with the authorized terminal based on the operation content.
  • the specific application manner and content thereof are defined in the prior art, and are not described here.
  • the data transmission channel with the terminal is established through the handshake data sent by the terminal, and the data transmission channel is used to perform duplex communication with the terminal.
  • the data transmission channel is re-created after the terminal performs identity verification, that is, not the same data transmission channel as the identity verification application of the terminal, and the data transmission channel is a newly created undisclosed channel, avoiding external Data attack, and data transmission interaction with the terminal through a separate data transmission channel, improving data transmission efficiency.
  • FIG. 3 is a schematic diagram of a second embodiment of a remote wireless data transmission method according to the present invention.
  • the step of performing duplex communication with an authorized terminal through the data communication transmission channel After that, it also includes:
  • Step S40 after detecting that the authorized terminal stops the communication operation, cancel the data communication transmission channel corresponding to the authorized terminal;
  • the authorized terminal performs duplex communication with the data management server based on the created data communication transmission channel.
  • the data communication transmission channel corresponding to the authorized terminal is directly cancelled.
  • the data operation is stopped, and the operation command corresponding to the authorized terminal is not received in the data management server.
  • the canceling the data communication transmission channel is to close the data communication transmission channel, and clear related operations such as creation traces of the data transmission channel, so as to prevent the restart of the data communication transmission channel.
  • the step of canceling the data communication transmission channel corresponding to the authorized terminal after the authorized terminal stops the data interaction including:
  • the data management server receives the data communication operation of the authorized terminal, and counts the time after the operation of the data communication stops, to avoid the possibility that the authorized terminal temporarily stops the data communication operation.
  • the target time is a defined data communication intermission time. Determining, after the authorized terminal stops the data communication operation target time, and canceling the data communication transmission channel corresponding to the authorized terminal when the counted stop data communication operation time of the authorized terminal is greater than or equal to the preset time .
  • the preset time is a sleep time of the communication operation of the defined authorized terminal.
  • the method further includes:
  • the data interaction stop time that has been counted if the data interaction stop time is less than or equal to the preset lock time, that is, when the data interaction stop time is within the preset lock time, the data communication of the corresponding terminal that stops the data interaction stop is
  • the transmission channel stops the process of data interaction and generates a random unlock password submission when the data communication transmission channel is locked. After the data communication transmission channel is locked, the channel lock information is submitted, and the user is prompted to input the corresponding unlock password. After receiving the unlock password. Compared with the randomly generated corresponding unlocking password, when the unlocking password is consistent with the randomly generated corresponding unlocking password, the corresponding locked data communication transmission channel is restored. To restore data interaction.
  • the unlock password is simultaneously generated, and when the data communication transmission channel is locked, the user channel is prompted to be locked by the reminder, and the corresponding unlock password is input.
  • the data communication transmission channel is unlocked by setting the unlock password to avoid receiving external attacks during the channel locking process.
  • FIG. 4 is a schematic diagram of a third embodiment of a remote wireless data transmission method according to the present invention.
  • the identification information of the terminal corresponding to the handshake data is verified, that is, the basis is Before the step of obtaining the handshake data for the terminal corresponding to the handshake data, the method further includes:
  • Step S50 when receiving the handshake data sent by the terminal, acquiring identity information of the terminal according to the handshake data, and querying, in the terminal information table, whether the terminal identity information is already registered according to the identity information;
  • the handshake data is a specific term defined in the art, and the specific content is that after the communication circuit is established, before the information transmission starts, the handshake is used to achieve parameters, such as information transmission rate, alphabet , parity, interrupt procedures, and other protocol features. That is, the handshake data is based on the relationship of the application, and the handshake information included is called handshake data.
  • the identity information of the terminal is extracted in the handshake data, and specifically includes information such as a user ID and an authorization information, based on the handshake data that has been received. And according to the extracted identity information of the terminal, the authorization authentication process is started, and the terminal is authenticated.
  • the specific operation mode is to query, according to the identity information of the terminal, the terminal information list that has been constructed and saved to the corresponding storage area, whether there is data corresponding to the identity information of the terminal.
  • Step S60 When it is confirmed that the terminal identity information has been registered in the terminal information table, it is confirmed that the terminal passes the identity verification.
  • the method further includes:
  • the step of authorizing the authenticated terminal includes:
  • an embodiment of the present invention further provides a computer readable storage medium, where the remote wireless data transmission program is stored, and when the remote wireless data transmission program is executed by the processor, the following operations are implemented:
  • the data interaction stop time of the authorized terminal is calculated.
  • the data communication transmission channel is locked and an unlock password of the data communication transmission channel is generated to stop data interaction.
  • the data communication transmission channel After receiving the corresponding unlocking password of the data communication transmission channel, the data communication transmission channel is unlocked, and the data communication transmission channel is restored.
  • the authorized content of each terminal is set, and the authorized content is saved in association with the identity information of the terminal.
  • the content of the authorization information is read based on the corresponding authorization information that has been found to the terminal, so that the terminal accesses the service of the data server with the content of the authorization information.
  • the identity identifier of each terminal is associated with the data communication transmission channel corresponding to the terminal, to identify the transmitting terminal of the received communication data according to the identity identifier.
  • a data communication transmission channel is created based on the corresponding network interface of the data communication transmission channel application, wherein the authentication application user interface is different from the data communication transmission channel application network interface.
  • portions of the technical solution of the present invention that contribute substantially or to the prior art may be embodied in the form of a software product stored in a storage medium (such as a ROM/RAM as described above). , a disk, an optical disk, including a number of instructions for causing a terminal device (which may be a mobile phone, a computer, a server, an air conditioner, or a network device, etc.) to perform the methods described in various embodiments of the present invention.
  • a terminal device which may be a mobile phone, a computer, a server, an air conditioner, or a network device, etc.

Landscapes

  • Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Power Engineering (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)

Abstract

Disclosed is a remote wireless data transmission method, comprising: when a terminal is successfully authenticated, authorizing, on the basis of handshake data received, the corresponding terminal that transmitted the handshake data, thus allowing the authorized terminal to access a data server; creating a data communication transmission channel corresponding to the authorized terminal per a preset creation scheme; and performing duplex communication with the authorized terminal on the basis of the data communication transmission channel. Also disclosed are a remote wireless data transmission device and a computer readable storage medium. The present invention implements the creation of a peer-to-peer data communication transmission channel between a terminal and a data management server, increases the efficiency of data transmission, and, by creating the peer-to-peer data communication transmission channel, prevents data transmission from coming under external attacks.

Description

远程无线数据传输方法、装置及计算可读存储介质  Remote wireless data transmission method, device and computing readable storage medium
技术领域Technical field
本发明涉及无线通讯领域,尤其涉及一种远程无线数据传输方法、装置及计算机可读存储介质。The present invention relates to the field of wireless communications, and in particular, to a remote wireless data transmission method, apparatus, and computer readable storage medium.
背景技术Background technique
随着时代的发展和技术的进步,信息数据急速增长。因此人们通常需要大型的本地数据服务器来存储庞大的信息数据,同时也经常需要使用异地设备查询本地数据服务器的信息,以及向本地数据服务器发送信息,以作备份,尤其是紧急数据备份。With the development of the times and the advancement of technology, information data has grown rapidly. Therefore, people usually need large local data servers to store huge information data. At the same time, they often need to use remote devices to query local data server information and send information to local data servers for backup, especially emergency data backup.
异地设备通过互联网云端向本地数据服务器发送握手数据,实现身份认证以后,进行单向数据通讯。同时,在异地设备获得授权之前,异地设备与本地数据服务器之间的数据传输已公开显露。The remote device sends handshake data to the local data server through the Internet cloud to implement one-way data communication after identity authentication. At the same time, data transmission between the off-site device and the local data server has been publicly revealed before the remote device is authorized.
现有技术的双工通讯中,身份验证与数据通讯采用同样的传输线路,造成服务器负荷大带宽占用过多,且在数据通讯时,不同平台之间的身份认证和数据通讯复杂性大,造成信息交流较长。且在身份验证成功之间,已公开显示数据通信线路,容易遭到网络攻击。In the prior art duplex communication, the same transmission line is used for identity verification and data communication, which causes excessive load on the server load, and the complexity of identity authentication and data communication between different platforms is large during data communication. Information exchange is long. And between the successful authentication, the data communication line has been publicly displayed, which is vulnerable to network attacks.
上述内容仅用于辅助理解本发明的技术方案,并不代表承认上述内容是现有技术。The above content is only used to assist in understanding the technical solutions of the present invention, and does not constitute an admission that the above is prior art.
发明内容Summary of the invention
本发明的主要目的在于提供一种远程无线数据传输方法和装置,旨在解决远程无线通讯传输过程中,由于通讯线路造成的数据传输及数据隐秘性的技术问题。The main object of the present invention is to provide a remote wireless data transmission method and apparatus, which aims to solve the technical problem of data transmission and data privacy caused by communication lines in the process of remote wireless communication transmission.
为实现上述目的,本发明提供一种远程无线数据传输方法,包括:To achieve the above object, the present invention provides a remote wireless data transmission method, including:
在对终端进行身份验证通过后,为已通过身份验证的终端授权,以使授权终端访问数据服务器;After authenticating the terminal, authorizing the authenticated terminal to enable the authorized terminal to access the data server;
以预设创建方式创建与所述授权终端对应的数据通讯传输通道;Creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner;
通过所述数据通讯传输通道,与所述授权终端进行双工通讯。Performing duplex communication with the authorized terminal through the data communication transmission channel.
优选地,所述通过所述数据通讯传输通道,与所述授权终端进行双工通讯的步骤之后,还包括:Preferably, after the step of performing duplex communication with the authorized terminal by using the data communication transmission channel, the method further includes:
在检测到所述授权终端停止通讯操作后,取消与所述授权终端对应的数据通讯传输通道。After detecting that the authorized terminal stops the communication operation, canceling the data communication transmission channel corresponding to the authorized terminal.
优选地,所述在检测到所述授权终端停止通讯操作后,取消与所述授权终端对应的数据通讯传输通道的步骤,包括:Preferably, the step of canceling the data communication transmission channel corresponding to the authorized terminal after detecting that the authorized terminal stops the communication operation comprises:
在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间。After the communication operation of the authorized terminal stops counting time, the data interaction stop time of the authorized terminal is calculated.
优选地,所述在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间的步骤之后,还包括:Preferably, after the step of calculating the data interaction stop time of the authorized terminal after the communication operation of the authorized terminal stops the target time, the method further includes:
在所述数据交互停止时间大于或等于预设时间时,取消与所述授权终端对应的数据通信传输通道。And when the data interaction stop time is greater than or equal to the preset time, canceling the data communication transmission channel corresponding to the authorized terminal.
优选地,所述在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间的步骤之后,还包括:Preferably, after the step of calculating the data interaction stop time of the authorized terminal after the communication operation of the authorized terminal stops the target time, the method further includes:
在所述数据交互停止时间处于预设锁定时间内时,锁定所述数据通信传输通道并生成所述数据通信传输通道的解锁密码以停止数据交互。When the data interaction stop time is within a preset lock time, the data communication transmission channel is locked and an unlock password of the data communication transmission channel is generated to stop data interaction.
优选地,所述在所述数据交互停止时间处于预设锁定时间内时,锁定所述数据通信传输通道并生成所述数据通信传输通道的解锁密码以停止数据交互的步骤之后,还包括:Preferably, after the step of locking the data communication transmission channel and generating an unlock password of the data communication transmission channel to stop data interaction, when the data interaction stop time is within a preset lock time, the method further includes:
在接收到所述数据通信传输通道的对应解锁密码后,将所述数据通讯传输通道解锁,恢复所述数据通信传输通道。After receiving the corresponding unlocking password of the data communication transmission channel, the data communication transmission channel is unlocked, and the data communication transmission channel is restored.
优选地,所述在接收到所述数据通信传输通道的对应解锁密码后的步骤,包括:Preferably, the step after receiving the corresponding unlock password of the data communication transmission channel includes:
接收解锁密码,并将所述解锁密码与预设解锁密码比对,在确认接收到的所述解锁密码与预设解锁密码一致时,确认接收到的所述解锁密码为所述数据通信传输通道的对应解锁密码。Receiving the unlocking password, and comparing the unlocking password with the preset unlocking password, and confirming that the received unlocking password is consistent with the preset unlocking password, confirming that the received unlocking password is the data communication transmission channel The corresponding unlock password.
优选地,所述在对终端进行身份验证通过后,为已通过身份验证的终端授权的步骤之前,还包括:Preferably, before the step of authenticating the authenticated terminal after the terminal is authenticated, the method further includes:
在接收到终端发送的握手数据时,根据所述握手数据获取所述终端的身份信息,并根据所述身份信息在终端信息表中查询所述终端身份信息是否已登记;When receiving the handshake data sent by the terminal, acquiring the identity information of the terminal according to the handshake data, and querying, in the terminal information table, whether the terminal identity information is already registered according to the identity information;
确认所述终端信息表已登记所述终端身份信息时,确认所述终端通过身份验证。When it is confirmed that the terminal identity information has been registered in the terminal information table, it is confirmed that the terminal passes the identity verification.
优选地,所述在接收到终端发送的握手数据时,根据所述握手数据获取所述终端的身份信息,并根据所述身份信息在终端信息表中查询所述终端身份信息是否已登记的步骤之前,还包括:Preferably, when receiving the handshake data sent by the terminal, acquiring the identity information of the terminal according to the handshake data, and querying, in the terminal information table, whether the terminal identity information is registered according to the identity information Previously, it also included:
创建终端信息表,并登记对应终端身份信息;Create a terminal information table and register corresponding terminal identity information;
设定各个终端的授权内容,并将所述授权内容与所述终端的身份信息关联保存;Setting authorized content of each terminal, and associating the authorized content with the identity information of the terminal;
优选地,所述为已通过身份验证的终端授权的步骤包括:Preferably, the step of authorizing the authenticated terminal comprises:
在所述终端身份验证通过之后,根据所述身份信息获取所述终端的授权内容;After the terminal identity verification is passed, acquiring the authorized content of the terminal according to the identity information;
根据所述授权内容对所述终端进行授权。Authorizing the terminal according to the authorized content.
优选地,所述根据所述身份信息获取所述终端的授权内容的步骤,还包括:Preferably, the step of acquiring the authorized content of the terminal according to the identity information further includes:
提取已通过身份验证的所述终端的终端标识,以所述终端标识为条件在预设终端连接列表中查找所述终端的授权信息。Extracting the terminal identifier of the terminal that has been authenticated, and searching for the authorization information of the terminal in the preset terminal connection list on the condition that the terminal identifier is used.
优选地,所述提取已通过身份验证的所述终端的终端标识,以所述终端标识为条件在预设终端连接列表中查找所述终端的授权信息的步骤之后,还包括:Preferably, the step of extracting the terminal identifier of the terminal that has been authenticated, and the step of searching for the authorization information of the terminal in the preset terminal connection list on the condition of the terminal identifier, further includes:
基于已查找到所述终端的对应授权信息,读取所述授权信息的内容,以使所述终端以所述授权信息的内容对应访问数据服务器的业务。The content of the authorization information is read based on the corresponding authorization information that has been found to the terminal, so that the terminal accesses the service of the data server with the content of the authorization information.
优选地,所述以预设创建方式创建与所述授权终端对应的数据通讯传输通道的步骤,还包括:Preferably, the step of creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner further includes:
在所述授权终端的数量为多个时,分别创建与各授权终端对应的数据通讯传输通道;When the number of the authorized terminals is multiple, respectively, a data communication transmission channel corresponding to each authorized terminal is created;
将各个终端的身份标识与终端对应的数据通讯传输通道关联保存,以根据所述身份标识识别接收到的通信数据的发送终端。The identity identifier of each terminal is associated with the data communication transmission channel corresponding to the terminal, to identify the transmitting terminal of the received communication data according to the identity identifier.
优选地,所述方法还包括:Preferably, the method further includes:
在身份验证成功后,基于所述数据通信传输通道应用的对应网络接口创建数据通讯传输通道,其中,所述身份验证应用用户接口与数据通信传输通道应用网络接口不同。After the authentication succeeds, a data communication transmission channel is created based on the corresponding network interface of the data communication transmission channel application, wherein the authentication application user interface is different from the data communication transmission channel application network interface.
基于上述问题,本发明还提供一种远程无线数据传输装置,其特征在于,所述装置包括:存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,所述计算机程序被所述处理器执行时实现如上所述远程无线数据传输方法的步骤。Based on the above problems, the present invention further provides a remote wireless data transmission apparatus, characterized in that the apparatus comprises: a memory, a processor, and a computer program stored on the memory and operable on the processor, The steps of the remote wireless data transmission method as described above are implemented when the computer program is executed by the processor.
本发明还提供一种计算机可读存储介质,所述计算机可读存储介质上存储有远程无线数据传输程序,所述远程无线数据传输程序被处理器执行时实现如上所述的远程无线数据传输方法的步骤。The present invention also provides a computer readable storage medium having a remote wireless data transmission program stored thereon, the remote wireless data transmission program being executed by a processor to implement the remote wireless data transmission method as described above A step of.
本发明通过根据已接收到的握手数据,为发送握手数据对应的终端授权,以使所述授权终端可访问数据服务器;以预设创建方式创建与授权终端对应的数据通讯传输通道;基于所述数据通讯传输通道,与授权终端进行双工通讯。实现授权终端与数据服务器点对点的双工通讯,提高数据传输。且双工通讯的数据通讯传输通道与身份认证的通道不一致,在身份验证成功之前,所述数据通讯传输通道未公开,以达到使数据传输通道避免外部攻击的有益效果。The invention authorizes the terminal corresponding to the sending handshake data according to the received handshake data, so that the authorized terminal can access the data server; and creates a data communication transmission channel corresponding to the authorized terminal in a preset creation manner; The data communication transmission channel performs duplex communication with the authorized terminal. Realize peer-to-peer duplex communication between the authorized terminal and the data server to improve data transmission. Moreover, the data communication transmission channel of the duplex communication is inconsistent with the identity authentication channel. Before the identity verification succeeds, the data communication transmission channel is not disclosed, so as to achieve the beneficial effect of avoiding external attacks on the data transmission channel.
附图说明DRAWINGS
图1是本发明实施例方案涉及的硬件运行环境的终端\装置结构示意图;1 is a schematic structural diagram of a terminal/device in a hardware operating environment according to an embodiment of the present invention;
图2为本发明远程无线数据传输方法第一实施例的流程示意图;2 is a schematic flow chart of a first embodiment of a remote wireless data transmission method according to the present invention;
图3为本发明远程无线数据传输方法第二实施例的流程示意图;3 is a schematic flowchart of a second embodiment of a remote wireless data transmission method according to the present invention;
图4为本发明远程无线数据传输方法第三实施例的流程示意图。4 is a schematic flow chart of a third embodiment of a remote wireless data transmission method according to the present invention.
本发明目的的实现、功能特点及优点将结合实施例,参照附图做进一步说明。The implementation, functional features, and advantages of the present invention will be further described in conjunction with the embodiments.
具体实施方式detailed description
应当理解,此处所描述的具体实施例仅仅用以解释本发明,并不用于限定本发明。It is understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
本发明实施例的主要解决方案是:在对终端进行身份验证通过后,为已通过身份验证的终端授权,以使授权终端访问数据服务器;以预设创建方式创建与所述授权终端对应的数据通讯传输通道;通过所述数据通讯传输通道,与所述授权终端进行双工通讯。The main solution of the embodiment of the present invention is: after authenticating the terminal, authorizing the authenticated terminal to enable the authorized terminal to access the data server; and creating data corresponding to the authorized terminal in a preset creation manner. a communication transmission channel; performing duplex communication with the authorized terminal through the data communication transmission channel.
由于现有技术的双工通讯中,身份验证与数据通讯采用同样的传输线路,造成服务器负荷大带宽占用过多,且在数据通讯时,不同平台之间的身份认证和数据通讯复杂性大,造成信息交流较长。且在身份验证成功之间,已公开显示数据通信线路,容易遭到网络攻击In the duplex communication of the prior art, the same transmission line is used for the identity verification and the data communication, which causes the server to load too much bandwidth, and in the data communication, the identity authentication and the data communication complexity between different platforms are large. Causes information exchange to be longer. And between the successful authentication, the data communication line has been publicly displayed, which is vulnerable to cyber attacks.
本发明提供一种解决方案,使终端的身份验证与数据通讯分别使用不同通讯通道,且在终端设备实现身份认证之前,数据传输通道是隐藏的,未经授权人员无法得知,继而无法对所述数据传输通道进行定向的数据攻击和拦截。且建立与终端设备与数据管理服务器的点对点的数据传输通道,提高了数据传输效率,减少了信息交流的时延问题。The present invention provides a solution for the terminal to use different communication channels for identity verification and data communication, and before the terminal device implements identity authentication, the data transmission channel is hidden, and the unauthorized person cannot know, and then cannot The data transmission channel performs directed data attack and interception. And establishing a point-to-point data transmission channel with the terminal device and the data management server, improving data transmission efficiency and reducing the delay of information exchange.
如图1所示,图1是本发明远程无线数据传输方法实施例方案涉及的硬件运行环境的终端结构示意图。As shown in FIG. 1, FIG. 1 is a schematic structural diagram of a terminal in a hardware operating environment involved in an embodiment of a remote wireless data transmission method according to the present invention.
本发明实施例终端可以是PC,也可以是智能手机、平板电脑、电子书阅读器、MP3(Moving Picture Experts Group Audio Layer III,动态影像专家压缩标准音频层面3)播放器、MP4(Moving Picture Experts Group Audio Layer IV,动态影像专家压缩标准音频层面3)播放器、便携计算机等具有显示功能的可移动式终端设备。The terminal in the embodiment of the present invention may be a PC, or may be a smart phone, a tablet computer, an e-book reader, and an MP3 (Moving Picture). Experts Group Audio Layer III, Motion Picture Expert Compress Standard Audio Level 3) Player, MP4 (Moving Picture Experts Group Audio Layer IV, dynamic video experts compress standard audio layers 3) Players, portable computers and other portable terminal devices with display functions.
如图1所示,该终端可以包括:处理器300,例如CPU;网络接口102,用户接口101,存储器200、通信总线100。其中,通信总线100用于实现这些组件之间的连接通信。用户接口101可以包括显示屏(Display)、输入单元比如键盘(Keyboard),可选用户接口101还可以包括标准的有线接口、无线接口。网络接口102可选的可以包括标准的有线接口、无线接口(如WI-FI接口)。存储器200可以是高速RAM存储器,也可以是稳定的存储器(non-volatile memory),例如磁盘存储器。存储器200可选的还可以是独立于前述处理器300的存储装置。As shown in FIG. 1, the terminal may include a processor 300, such as a CPU, a network interface 102, a user interface 101, a memory 200, and a communication bus 100. Among them, the communication bus 100 is used to implement connection communication between these components. The user interface 101 can include a display, an input unit such as a keyboard, and the optional user interface 101 can also include a standard wired interface, a wireless interface. The network interface 102 can optionally include a standard wired interface, a wireless interface (such as a WI-FI interface). The memory 200 can be a high speed RAM memory or a stable memory (non-volatile) Memory), such as disk storage. The memory 200 can also optionally be a storage device independent of the aforementioned processor 300.
本领域技术人员可以理解,图1中示出的终端结构并不构成对终端的限定,可以包括比图示更多或更少的部件,或者组合某些部件,或者不同的部件布置。It will be understood by those skilled in the art that the terminal structure shown in FIG. 1 does not constitute a limitation to the terminal, and may include more or less components than those illustrated, or a combination of certain components, or different component arrangements.
如图1所示,作为一种计算机存储介质的存储器1005中可以包括操作系统、网络通信模块、用户接口模块以及远程无线数据传输程序。As shown in FIG. 1, an operating system, a network communication module, a user interface module, and a remote wireless data transmission program may be included in the memory 1005 as a computer storage medium.
在图1所示的终端中,网络接口102主要用于连接后台服务器,与后台服务器进行数据通信;用户接口101主要用于连接客户端(用户端),与客户端进行数据通信;而处理器300可以用于调用存储器200中存储的远程无线数据传输程序,并执行以下操作:In the terminal shown in FIG. 1, the network interface 102 is mainly used to connect to a background server for data communication with a background server; the user interface 101 is mainly used for connecting a client (user end) to perform data communication with the client; and the processor 300 can be used to call a remote wireless data transfer program stored in the memory 200 and perform the following operations:
在对终端进行身份验证通过后,为已通过身份验证的终端授权,以使授权终端访问数据服务器;After authenticating the terminal, authorizing the authenticated terminal to enable the authorized terminal to access the data server;
以预设创建方式创建与所述授权终端对应的数据通讯传输通道;Creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner;
通过所述数据通讯传输通道,与所述授权终端进行双工通讯。Performing duplex communication with the authorized terminal through the data communication transmission channel.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
在检测到所述授权终端停止通讯操作后,取消与所述授权终端对应的数据通讯传输通道。After detecting that the authorized terminal stops the communication operation, canceling the data communication transmission channel corresponding to the authorized terminal.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间。After the communication operation of the authorized terminal stops counting time, the data interaction stop time of the authorized terminal is calculated.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
在所述数据交互停止时间大于或等于预设时间时,取消与所述授权终端对应的数据通信传输通道。And when the data interaction stop time is greater than or equal to the preset time, canceling the data communication transmission channel corresponding to the authorized terminal.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
在所述数据交互停止时间处于预设锁定时间内时,锁定所述数据通信传输通道并生成所述数据通信传输通道的解锁密码以停止数据交互。When the data interaction stop time is within a preset lock time, the data communication transmission channel is locked and an unlock password of the data communication transmission channel is generated to stop data interaction.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
在接收到所述数据通信传输通道的对应解锁密码后,将所述数据通讯传输通道解锁,恢复所述数据通信传输通道。After receiving the corresponding unlocking password of the data communication transmission channel, the data communication transmission channel is unlocked, and the data communication transmission channel is restored.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
接收解锁密码,并将所述解锁密码与预设解锁密码比对,在确认接收到的所述解锁密码与预设解锁密码一致时,确认接收到的所述解锁密码为所述数据通信传输通道的对应解锁密码。Receiving the unlocking password, and comparing the unlocking password with the preset unlocking password, and confirming that the received unlocking password is consistent with the preset unlocking password, confirming that the received unlocking password is the data communication transmission channel The corresponding unlock password.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
在接收到终端发送的握手数据时,根据所述握手数据获取所述终端的身份信息,并根据所述身份信息在终端信息表中查询所述终端身份信息是否已登记;When receiving the handshake data sent by the terminal, acquiring the identity information of the terminal according to the handshake data, and querying, in the terminal information table, whether the terminal identity information is already registered according to the identity information;
确认所述终端信息表已登记所述终端身份信息时,确认所述终端通过身份验证。When it is confirmed that the terminal identity information has been registered in the terminal information table, it is confirmed that the terminal passes the identity verification.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
创建终端信息表,并登记对应终端身份信息;Create a terminal information table and register corresponding terminal identity information;
设定各个终端的授权内容,并将所述授权内容与所述终端的身份信息关联保存。The authorized content of each terminal is set, and the authorized content is saved in association with the identity information of the terminal.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also performs the following operations.
在所述终端身份验证通过之后,根据所述身份信息获取所述终端的授权内容;After the terminal identity verification is passed, acquiring the authorized content of the terminal according to the identity information;
根据所述授权内容对所述终端进行授权。Authorizing the terminal according to the authorized content.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
提取已通过身份验证的所述终端的终端标识,以所述终端标识为条件在预设终端连接列表中查找所述终端的授权信息。Extracting the terminal identifier of the terminal that has been authenticated, and searching for the authorization information of the terminal in the preset terminal connection list on the condition that the terminal identifier is used.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
基于已查找到所述终端的对应授权信息,读取所述授权信息的内容,以使所述终端以所述授权信息的内容对应访问数据服务器的业务。The content of the authorization information is read based on the corresponding authorization information that has been found to the terminal, so that the terminal accesses the service of the data server with the content of the authorization information.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
在所述授权终端的数量为多个时,分别创建与各授权终端对应的数据通讯传输通道;When the number of the authorized terminals is multiple, respectively, a data communication transmission channel corresponding to each authorized terminal is created;
将各个终端的身份标识与终端对应的数据通讯传输通道关联保存,以根据所述身份标识识别接收到的通信数据的发送终端。The identity identifier of each terminal is associated with the data communication transmission channel corresponding to the terminal, to identify the transmitting terminal of the received communication data according to the identity identifier.
进一步地,处理器300可以调用存储器200中存储的远程无线数据传输程序,还执行以下操作:Further, the processor 300 can call the remote wireless data transmission program stored in the memory 200, and also perform the following operations:
在身份验证成功后,基于所述数据通信传输通道应用的对应网络接口创建数据通讯传输通道,其中,所述身份验证应用用户接口与数据通信传输通道应用网络接口不同。After the authentication succeeds, a data communication transmission channel is created based on the corresponding network interface of the data communication transmission channel application, wherein the authentication application user interface is different from the data communication transmission channel application network interface.
参照图2,图2为本发明远程无线数据传输第一实施例,所述方法具体包括以下内容: Referring to FIG. 2, FIG. 2 is a first embodiment of remote wireless data transmission according to the present invention, and the method specifically includes the following contents:
步骤S10,在对终端进行身份验证通过后,为已通过身份验证的终端授权,以使授权终端访问数据服务器;Step S10, after authenticating the terminal, authorizing the terminal that has passed the authentication, so that the authorized terminal accesses the data server;
已通过所述数据服务器授权的对应终端,向所述终端授权,使所述终端可访问数据服务器,并进行双工通讯的数据交互操作。其中,所述终端授权,为所述数据服务器中已构建的授权方式,具体的,可创建一个活动的终端连接列表,所述终端连接列表中包含所述已授权的终端信息,且所述终端信息标志设定为授权可访问终端,以使所述终端在访问数据服务器时,通过所述终端连接列表的对应信息进行访问。The corresponding terminal authorized by the data server is authorized to the terminal, so that the terminal can access the data server and perform data interaction operation of duplex communication. The terminal authorization is an authorization mode that has been constructed in the data server. Specifically, an active terminal connection list may be created, where the terminal connection list includes the authorized terminal information, and the terminal The information flag is set to authorize the accessible terminal to enable the terminal to access the corresponding information of the terminal connection list when accessing the data server.
步骤S20,以预设创建方式创建与所述授权终端对应的数据通讯传输通道;Step S20, creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner;
对所述握手数据对应的终端授权后,以预设创建方式创建于授权终端对应数据通讯传输通道。所述预设创建方式,具体指P2P穿透方式,其定义为点对点或端对端的终端连接方式,即建立所述授权终端与数据管理服务器的点对点的数据传输通道,以使所述授权终端与所述数据管理服务器进行双方的直接数据传输通讯,不需要通过中间数据服务器之类的第三端进行数据处理。且所述数据传输通道,只应用于单个的所述授权终端与所述数据管理服务器的数据传输通讯。即每个所述授权终端都有单独的已创建的数据通讯传输通道。After the terminal corresponding to the handshake data is authorized, the data communication transmission channel corresponding to the authorized terminal is created in a preset creation manner. The preset creation mode, specifically the P2P penetration mode, is defined as a point-to-point or end-to-end terminal connection manner, that is, establishing a point-to-point data transmission channel between the authorized terminal and the data management server, so that the authorized terminal and the authorized terminal The data management server performs direct data transmission communication between the two parties, and does not need to perform data processing through a third end such as an intermediate data server. And the data transmission channel is only applied to data transmission communication between the single authorized terminal and the data management server. That is, each of the authorized terminals has a separate created data communication transmission channel.
其中,在为终端授权之后并向所述授权终端创建数据通讯传输通道,即所述以预设创建方式创建与所述授权终端对应的数据通讯传输通道的步骤,还包括:The step of creating a data communication transmission channel to the authorized terminal after the authorization of the terminal, that is, the step of creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner, further includes:
在所述授权终端的数量为多个时,分别创建与各授权终端对应的数据通讯传输通道;将各个终端的身份标识与终端对应的数据通讯传输通道关联保存,以根据所述身份标识识别接收到的通信数据的发送终端。When the number of the authorized terminals is multiple, respectively, a data communication transmission channel corresponding to each authorized terminal is created; and the identity identifier of each terminal is associated with the data communication transmission channel corresponding to the terminal, so as to identify and receive according to the identity identifier. The transmitting terminal of the communication data.
在为授权终端创建数据通讯传输通道时,若所述授权终端为多个,创建以各授权终端为标识的数据通讯传输通道。即所述数据通讯传输通道为一一对应的,每个授权终端对应一个数据通讯传输通道。且各数据通讯传输通道以对应的所述授权终端为标识,与其他数据通讯传输通道隔离开来,以使各授权终端通过对应的数据通讯传输通道与数据服务器进行双工通讯,避免造成数据拥堵,影响数据交互的效率。在所述数据通讯传输通道创建完成之后,将所述以授权终端为标识的数据通讯传输通道与所述标识对应的授权终端身份标识关联,保存所述关联关系。使对应的授权终端依据所述身份标识的关联关系,识别至对应的数据通讯传输通道。When a data communication transmission channel is created for the authorized terminal, if there are multiple authorized terminals, a data communication transmission channel identified by each authorized terminal is created. That is, the data communication transmission channels are one-to-one correspondence, and each authorized terminal corresponds to one data communication transmission channel. And each data communication transmission channel is identified by the corresponding authorized terminal, and is isolated from other data communication transmission channels, so that each authorized terminal performs duplex communication with the data server through the corresponding data communication transmission channel, thereby avoiding data congestion. , affecting the efficiency of data interaction. After the data communication transmission channel is created, the data communication transmission channel identified by the authorized terminal is associated with the authorized terminal identity corresponding to the identifier, and the association relationship is saved. The corresponding authorized terminal is identified to the corresponding data communication transmission channel according to the association relationship of the identity identifier.
步骤S30,通过所述数据通讯传输通道,与所述授权终端进行双工通讯。Step S30, performing duplex communication with the authorized terminal by using the data communication transmission channel.
根据对应的所述授权终端创建的数据通讯传输通道,使对应的所述授权终端与所述数据管理服务器进行数据交互操作,其数据交互操作的方向为双工通讯。其双工通讯的定义,为可以同时(瞬时)进行信号的双向传输(A→B且B→A);指A→B的同时B→A,是瞬时同步的。例如用户可通过远程控制的方式,操作数据服务器的输入装置,查询、获取所需的数据信息。所述数据服务器方的管理员,可基于所述操作内容,与所述授权终端进行沟通交流。其具体的应用方式及内容,为现有技术中已定义的内容,在此不多赘述。The data communication transmission channel created by the authorized terminal is configured to perform data interaction between the authorized terminal and the data management server, and the data interaction operation direction is duplex communication. Its duplex communication is defined as the simultaneous (instantaneous) bidirectional transmission of signals (A→B and B→A); the simultaneous B→A of A→B is instantaneously synchronized. For example, the user can operate the input device of the data server by means of remote control to query and obtain the required data information. The administrator of the data server side can communicate with the authorized terminal based on the operation content. The specific application manner and content thereof are defined in the prior art, and are not described here.
在本实施例中,通过终端发送的握手数据,建立与所述终端的数据传输通道,并以此数据传输通道,与所述终端进行双工通讯。所述数据传输通道,为终端进行身份验证之后重新创建的,即与所述终端的身份验证应用的不是同一条数据传输通道,且所述数据传输通道为新创建的未公开通道,避免外界的数据攻击,且通过单独的数据传输通道与终端进行数据传输交互,提高了数据传输效率。In this embodiment, the data transmission channel with the terminal is established through the handshake data sent by the terminal, and the data transmission channel is used to perform duplex communication with the terminal. The data transmission channel is re-created after the terminal performs identity verification, that is, not the same data transmission channel as the identity verification application of the terminal, and the data transmission channel is a newly created undisclosed channel, avoiding external Data attack, and data transmission interaction with the terminal through a separate data transmission channel, improving data transmission efficiency.
参照图3,图3为本发明远程无线数据传输方法的第二实施例示意图,基于本发明方法的第一实施例,所述通过所述数据通讯传输通道,与授权终端进行双工通讯的步骤之后,还包括:Referring to FIG. 3, FIG. 3 is a schematic diagram of a second embodiment of a remote wireless data transmission method according to the present invention. According to the first embodiment of the method of the present invention, the step of performing duplex communication with an authorized terminal through the data communication transmission channel After that, it also includes:
步骤S40,在检测到所述授权终端停止通讯操作后,取消与所述授权终端对应的数据通讯传输通道;Step S40, after detecting that the authorized terminal stops the communication operation, cancel the data communication transmission channel corresponding to the authorized terminal;
基于已创建的数据通讯传输通道,授权终端与数据管理服务器进行双工通讯。其中,在检测到所述授权终端对数据管理服务器的数据操作停止后,即通讯操作停止后。直接取消与所述授权终端对应的数据通讯传输通道。所述数据操作停止,为所述数据管理服务器中,已不能接收到所述授权终端对应的操作指令。所述取消数据通讯传输通道,为关闭所述数据通讯传输通道,并清空所述数据传输通道的创建痕迹等相关操作,以使杜绝所述数据通讯传输通道的重启可能。The authorized terminal performs duplex communication with the data management server based on the created data communication transmission channel. Wherein, after detecting that the data operation of the data management server by the authorized terminal is stopped, that is, after the communication operation is stopped. The data communication transmission channel corresponding to the authorized terminal is directly cancelled. The data operation is stopped, and the operation command corresponding to the authorized terminal is not received in the data management server. The canceling the data communication transmission channel is to close the data communication transmission channel, and clear related operations such as creation traces of the data transmission channel, so as to prevent the restart of the data communication transmission channel.
其中,所述在授权终端停止数据交互后,取消与所述授权终端对应的数据通讯传输通道的步骤,包括:The step of canceling the data communication transmission channel corresponding to the authorized terminal after the authorized terminal stops the data interaction, including:
在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间;在所述数据交互停止时间大于或等于预设时间时,取消与所述授权终端对应的数据通信传输通道。Determining a data interaction stop time of the authorized terminal after the communication operation of the authorized terminal stops the target time; canceling the data communication corresponding to the authorized terminal when the data interaction stop time is greater than or equal to the preset time Transmission channel.
数据管理服务器接收所述授权终端的数据通信操作,在数据通信的操作停止目标时间后计时,以规避所述授权终端暂时停止数据通讯操作的可能。所述目标时间,为定义的数据通讯中场休息时间。在所述授权终端停止数据通信操作目标时间后计时,并在已统计到的所述授权终端的停止数据通信操作时间大于或等于预设时间时,取消与所述授权终端对应的数据通信传输通道。所述预设时间,为已定义的授权终端所述通信操作的休眠时间。The data management server receives the data communication operation of the authorized terminal, and counts the time after the operation of the data communication stops, to avoid the possibility that the authorized terminal temporarily stops the data communication operation. The target time is a defined data communication intermission time. Determining, after the authorized terminal stops the data communication operation target time, and canceling the data communication transmission channel corresponding to the authorized terminal when the counted stop data communication operation time of the authorized terminal is greater than or equal to the preset time . The preset time is a sleep time of the communication operation of the defined authorized terminal.
其中,所述在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间的步骤之后,还包括:After the step of calculating the data interaction stop time of the authorized terminal after the communication operation of the authorized terminal is stopped, the method further includes:
在所述数据交互停止时间处于预设锁定时间内时,锁定所述数据通信传输通道并生成所述数据通信传输通道的解锁密码以停止数据交互;在接收到所述数据通信传输通道的对应解锁密码后,将所述数据通讯传输通道解锁,恢复所述数据通信传输通道。When the data interaction stop time is within a preset lock time, locking the data communication transmission channel and generating an unlock password of the data communication transmission channel to stop data interaction; and receiving corresponding unlocking of the data communication transmission channel After the password, the data communication transmission channel is unlocked, and the data communication transmission channel is restored.
已统计到的数据交互停止时间,若所述数据交互停止时间小于或等于预设锁定时间时,即所述数据交互停止时间处于预设锁定时间内时,锁定数据交互停止的对应终端的数据通讯传输通道,以停止数据交互的过程,并在锁定所述数据通讯传输通道时,生成随机的解锁密码提交。在数据通讯传输通道锁定完成后,提交通道锁定信息,并提醒用户输入对应的解锁密码。在接收到所述解锁密码后。与随机生成的对应解锁密码比对,在所述解锁密码与随机生成的对应解锁密码一致时,恢复对应的锁定数据通讯传输通道。以恢复数据交互。或者,在为对应授权终端创建所述数据通讯传输通道时,同时生成解锁密码,并在所述数据通讯传输通道锁定时通过提醒的方式提示用户通道锁定,需输入对应的解锁密码。通过解锁密码的设定方式解锁数据通讯传输通道,避免在通道锁定过程中收到外界攻击。The data interaction stop time that has been counted, if the data interaction stop time is less than or equal to the preset lock time, that is, when the data interaction stop time is within the preset lock time, the data communication of the corresponding terminal that stops the data interaction stop is The transmission channel stops the process of data interaction and generates a random unlock password submission when the data communication transmission channel is locked. After the data communication transmission channel is locked, the channel lock information is submitted, and the user is prompted to input the corresponding unlock password. After receiving the unlock password. Compared with the randomly generated corresponding unlocking password, when the unlocking password is consistent with the randomly generated corresponding unlocking password, the corresponding locked data communication transmission channel is restored. To restore data interaction. Alternatively, when the data communication transmission channel is created for the corresponding authorized terminal, the unlock password is simultaneously generated, and when the data communication transmission channel is locked, the user channel is prompted to be locked by the reminder, and the corresponding unlock password is input. The data communication transmission channel is unlocked by setting the unlock password to avoid receiving external attacks during the channel locking process.
参照图4,图4为本发明远程无线数据传输方法的第三实施例示意图,基于本发明方法的第一、二实施例,所述在验证握手数据对应终端的身份信息,即所述根据已接收到的握手数据,为握手数据对应的终端授权的步骤之前,还包括:Referring to FIG. 4, FIG. 4 is a schematic diagram of a third embodiment of a remote wireless data transmission method according to the present invention. According to the first and second embodiments of the method of the present invention, the identification information of the terminal corresponding to the handshake data is verified, that is, the basis is Before the step of obtaining the handshake data for the terminal corresponding to the handshake data, the method further includes:
步骤S50,在接收到终端发送的握手数据时,根据所述握手数据获取所述终端的身份信息,并根据所述身份信息在终端信息表中查询所述终端身份信息是否已登记;Step S50, when receiving the handshake data sent by the terminal, acquiring identity information of the terminal according to the handshake data, and querying, in the terminal information table, whether the terminal identity information is already registered according to the identity information;
接收终端发送的握手数据,所述握手数据,为本领域中已定义的专用术语,具体内容为是在通信电路建立之后,信息传输开始之前,握手用于达成参数,如信息传输率,字母表,奇偶校验,中断过程,和其他协议特性。即所述握手数据基于应用的关系,所包含的握手信息称之为握手数据。基于已接收到的所述握手数据,在所述握手数据中提取所述终端的身份信息,具体包含用户ID、授权信息等信息。根据已提取到的所述终端的身份信息,启动授权认证流程,为所述终端进行身份认证。所述授权认证流程,具体的操作方式为根据所述终端的身份信息,于已构建并保存至对应存储区域的终端信息列表中查询是否有与所述终端的身份信息对应的数据。Receiving handshake data sent by the terminal, the handshake data is a specific term defined in the art, and the specific content is that after the communication circuit is established, before the information transmission starts, the handshake is used to achieve parameters, such as information transmission rate, alphabet , parity, interrupt procedures, and other protocol features. That is, the handshake data is based on the relationship of the application, and the handshake information included is called handshake data. The identity information of the terminal is extracted in the handshake data, and specifically includes information such as a user ID and an authorization information, based on the handshake data that has been received. And according to the extracted identity information of the terminal, the authorization authentication process is started, and the terminal is authenticated. In the authorization authentication process, the specific operation mode is to query, according to the identity information of the terminal, the terminal information list that has been constructed and saved to the corresponding storage area, whether there is data corresponding to the identity information of the terminal.
步骤S60,确认所述终端信息表已登记所述终端身份信息时,确认所述终端通过身份验证。Step S60: When it is confirmed that the terminal identity information has been registered in the terminal information table, it is confirmed that the terminal passes the identity verification.
在所述终端信息列表中查新是否有与所述终端的身份信息对应的数据,若所述终端信息列表中,有与所述终端的身份信息对应的数据,则确认所述终端为已登记的终端,使所述终端通过身份验证;若所述终端信息列表中,并未存储与所述终端的身份信息对应的数据,则提交身份验证失败提示。Checking, in the terminal information list, whether there is data corresponding to the identity information of the terminal, and if there is data corresponding to the identity information of the terminal in the terminal information list, confirming that the terminal is registered The terminal enables the terminal to pass the authentication; if the terminal information list does not store the data corresponding to the identity information of the terminal, the identity verification failure prompt is submitted.
另外,所述在确认所述终端为已登记终端时,读取与所述终端对应的授权映射关系,为所述目标终端授权的步骤之前,还包括:In addition, before the step of confirming that the terminal is a registered terminal, the authorization mapping relationship corresponding to the terminal is read, and the step of authorizing the target terminal, the method further includes:
创建终端信息表,并登记对应终端身份信息;设定各个终端的授权内容,并将所述授权内容与所述终端的身份信息关联保存;Creating a terminal information table, and registering corresponding terminal identity information; setting authorized content of each terminal, and associating the authorized content with the identity information of the terminal;
其中,所述为已通过身份验证的终端授权的步骤包括:The step of authorizing the authenticated terminal includes:
根据所述身份信息获取所述终端的授权内容;Obtaining the authorized content of the terminal according to the identity information;
根据所述授权内容对所述终端进行授权。Authorizing the terminal according to the authorized content.
此外,本发明实施例还提出一种计算机可读存储介质,所述计算机可读存储介质上存储有远程无线数据传输程序,所述远程无线数据传输程序被处理器执行时实现如下操作:In addition, an embodiment of the present invention further provides a computer readable storage medium, where the remote wireless data transmission program is stored, and when the remote wireless data transmission program is executed by the processor, the following operations are implemented:
在对终端进行身份验证通过后,为已通过身份验证的终端授权,以使授权终端访问数据服务器;After authenticating the terminal, authorizing the authenticated terminal to enable the authorized terminal to access the data server;
以预设创建方式创建与所述授权终端对应的数据通讯传输通道;Creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner;
通过所述数据通讯传输通道,与所述授权终端进行双工通讯。Performing duplex communication with the authorized terminal through the data communication transmission channel.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
在检测到所述授权终端停止通讯操作后,取消与所述授权终端对应的数据通讯传输通道。After detecting that the authorized terminal stops the communication operation, canceling the data communication transmission channel corresponding to the authorized terminal.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间。After the communication operation of the authorized terminal stops counting time, the data interaction stop time of the authorized terminal is calculated.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
在所述数据交互停止时间大于或等于预设时间时,取消与所述授权终端对应的数据通信传输通道。And when the data interaction stop time is greater than or equal to the preset time, canceling the data communication transmission channel corresponding to the authorized terminal.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
在所述数据交互停止时间处于预设锁定时间内时,锁定所述数据通信传输通道并生成所述数据通信传输通道的解锁密码以停止数据交互。When the data interaction stop time is within a preset lock time, the data communication transmission channel is locked and an unlock password of the data communication transmission channel is generated to stop data interaction.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
在接收到所述数据通信传输通道的对应解锁密码后,将所述数据通讯传输通道解锁,恢复所述数据通信传输通道。After receiving the corresponding unlocking password of the data communication transmission channel, the data communication transmission channel is unlocked, and the data communication transmission channel is restored.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
接收解锁密码,并将所述解锁密码与预设解锁密码比对,在确认接收到的所述解锁密码与预设解锁密码一致时,确认接收到的所述解锁密码为所述数据通信传输通道的对应解锁密码。Receiving the unlocking password, and comparing the unlocking password with the preset unlocking password, and confirming that the received unlocking password is consistent with the preset unlocking password, confirming that the received unlocking password is the data communication transmission channel The corresponding unlock password.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
在接收到终端发送的握手数据时,根据所述握手数据获取所述终端的身份信息,并根据所述身份信息在终端信息表中查询所述终端身份信息是否已登记;When receiving the handshake data sent by the terminal, acquiring the identity information of the terminal according to the handshake data, and querying, in the terminal information table, whether the terminal identity information is already registered according to the identity information;
确认所述终端信息表已登记所述终端身份信息时,确认所述终端通过身份验证。When it is confirmed that the terminal identity information has been registered in the terminal information table, it is confirmed that the terminal passes the identity verification.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
创建终端信息表,并登记对应终端身份信息;Create a terminal information table and register corresponding terminal identity information;
设定各个终端的授权内容,并将所述授权内容与所述终端的身份信息关联保存。The authorized content of each terminal is set, and the authorized content is saved in association with the identity information of the terminal.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
在所述终端身份验证通过之后,根据所述身份信息获取所述终端的授权内容;After the terminal identity verification is passed, acquiring the authorized content of the terminal according to the identity information;
根据所述授权内容对所述终端进行授权。Authorizing the terminal according to the authorized content.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
提取已通过身份验证的所述终端的终端标识,以所述终端标识为条件在预设终端连接列表中查找所述终端的授权信息。Extracting the terminal identifier of the terminal that has been authenticated, and searching for the authorization information of the terminal in the preset terminal connection list on the condition that the terminal identifier is used.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
基于已查找到所述终端的对应授权信息,读取所述授权信息的内容,以使所述终端以所述授权信息的内容对应访问数据服务器的业务。The content of the authorization information is read based on the corresponding authorization information that has been found to the terminal, so that the terminal accesses the service of the data server with the content of the authorization information.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
在所述授权终端的数量为多个时,分别创建与各授权终端对应的数据通讯传输通道;When the number of the authorized terminals is multiple, respectively, a data communication transmission channel corresponding to each authorized terminal is created;
将各个终端的身份标识与终端对应的数据通讯传输通道关联保存,以根据所述身份标识识别接收到的通信数据的发送终端。The identity identifier of each terminal is associated with the data communication transmission channel corresponding to the terminal, to identify the transmitting terminal of the received communication data according to the identity identifier.
进一步地,所述远程无线数据传输程序被处理器执行时还实现如下操作:Further, when the remote wireless data transmission program is executed by the processor, the following operations are also implemented:
在身份验证成功后,基于所述数据通信传输通道应用的对应网络接口创建数据通讯传输通道,其中,所述身份验证应用用户接口与数据通信传输通道应用网络接口不同。After the authentication succeeds, a data communication transmission channel is created based on the corresponding network interface of the data communication transmission channel application, wherein the authentication application user interface is different from the data communication transmission channel application network interface.
需要说明的是,在本文中,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、物品或者系统不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、物品或者系统所固有的要素。在没有更多限制的情况下,由语句“包括一个……”限定的要素,并不排除在包括该要素的过程、方法、物品或者系统中还存在另外的相同要素。It is to be understood that the term "comprises", "comprising", or any other variants thereof, is intended to encompass a non-exclusive inclusion, such that a process, method, article, or It also includes other elements that are not explicitly listed, or elements that are inherent to such a process, method, item, or system. An element defined by the phrase "comprising a ..." does not exclude the presence of additional equivalent elements in a process, method, article, or system that includes the element, without further limitation.
上述本发明实施例序号仅仅为了描述,不代表实施例的优劣。The serial numbers of the embodiments of the present invention are merely for the description, and do not represent the advantages and disadvantages of the embodiments.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到上述实施例方法可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件,但很多情况下前者是更佳的实施方式。基于这样的理解,本发明的技术方案本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品存储在如上所述的一个存储介质(如ROM/RAM、磁碟、光盘)中,包括若干指令用以使得一台终端设备(可以是手机,计算机,服务器,空调器,或者网络设备等)执行本发明各个实施例所述的方法。Through the description of the above embodiments, those skilled in the art can clearly understand that the foregoing embodiment method can be implemented by means of software plus a necessary general hardware platform, and of course, can also be through hardware, but in many cases, the former is better. Implementation. Based on such understanding, portions of the technical solution of the present invention that contribute substantially or to the prior art may be embodied in the form of a software product stored in a storage medium (such as a ROM/RAM as described above). , a disk, an optical disk, including a number of instructions for causing a terminal device (which may be a mobile phone, a computer, a server, an air conditioner, or a network device, etc.) to perform the methods described in various embodiments of the present invention.
以上仅为本发明的优选实施例,并非因此限制本发明的专利范围,凡是利用本发明说明书及附图内容所作的等效结构或等效流程变换,或直接或间接运用在其他相关的技术领域,均同理包括在本发明的专利保护范围内。The above are only the preferred embodiments of the present invention, and are not intended to limit the scope of the invention, and the equivalent structure or equivalent process transformations made by the description of the present invention and the drawings are directly or indirectly applied to other related technical fields. The same is included in the scope of patent protection of the present invention.

Claims (16)

  1. 一种远程无线数据传输方法,其特征在于,所述远程无线数据传输方法包括以下步骤: A remote wireless data transmission method, characterized in that the remote wireless data transmission method comprises the following steps:
    在对终端进行身份验证通过后,为已通过身份验证的终端授权,以使授权终端访问数据服务器;After authenticating the terminal, authorizing the authenticated terminal to enable the authorized terminal to access the data server;
    以预设创建方式创建与所述授权终端对应的数据通讯传输通道;Creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner;
    通过所述数据通讯传输通道,与所述授权终端进行双工通讯。Performing duplex communication with the authorized terminal through the data communication transmission channel.
  2. 如权利要求1所述的远程无线数据传输方法,其特征在于,所述通过所述数据通讯传输通道,与所述授权终端进行双工通讯的步骤之后,还包括:The remote wireless data transmission method according to claim 1, wherein the step of performing duplex communication with the authorized terminal through the data communication transmission channel further comprises:
    在检测到所述授权终端停止通讯操作后,取消与所述授权终端对应的数据通讯传输通道。After detecting that the authorized terminal stops the communication operation, canceling the data communication transmission channel corresponding to the authorized terminal.
  3. 如权利要求2所述的远程无线数据传输方法,其特征在于,所述在检测到所述授权终端停止通讯操作后,取消与所述授权终端对应的数据通讯传输通道的步骤,包括:The remote wireless data transmission method according to claim 2, wherein the step of canceling the data communication transmission channel corresponding to the authorized terminal after detecting that the authorized terminal stops the communication operation comprises:
    在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间。After the communication operation of the authorized terminal stops counting time, the data interaction stop time of the authorized terminal is calculated.
  4. 如权利要求3所述的远程无线数据传输方法,其特征在于,所述在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间的步骤之后,还包括:The remote wireless data transmission method according to claim 3, wherein the step of counting the data interaction stop time of the authorized terminal after the communication operation of the authorized terminal stops the target time, further comprising:
    在所述数据交互停止时间大于或等于预设时间时,取消与所述授权终端对应的数据通信传输通道。And when the data interaction stop time is greater than or equal to the preset time, canceling the data communication transmission channel corresponding to the authorized terminal.
  5. 如权利要求3所述的远程无线数据传输方法,其特征在于,所述在所述授权终端的通讯操作停止目标时间后计时,计算所述授权终端的数据交互停止时间的步骤之后,还包括:The remote wireless data transmission method according to claim 3, wherein the step of counting the data interaction stop time of the authorized terminal after the communication operation of the authorized terminal stops the target time, further comprising:
    在所述数据交互停止时间处于预设锁定时间内时,锁定所述数据通信传输通道并生成所述数据通信传输通道的解锁密码以停止数据交互。When the data interaction stop time is within a preset lock time, the data communication transmission channel is locked and an unlock password of the data communication transmission channel is generated to stop data interaction.
  6. 如权利要求5所述的远程无线数据传输方法,其特征在于,所述在所述数据交互停止时间处于预设锁定时间内时,锁定所述数据通信传输通道并生成所述数据通信传输通道的解锁密码以停止数据交互的步骤之后,还包括:The remote wireless data transmission method according to claim 5, wherein when the data interaction stop time is within a preset lock time, the data communication transmission channel is locked and the data communication transmission channel is generated. After unlocking the password to stop the data interaction, it also includes:
    在接收到所述数据通信传输通道的对应解锁密码后,将所述数据通讯传输通道解锁,恢复所述数据通信传输通道。After receiving the corresponding unlocking password of the data communication transmission channel, the data communication transmission channel is unlocked, and the data communication transmission channel is restored.
  7. 如权利要求6所述的远程无线数据传输方法,其特征在于,所述在接收到所述数据通信传输通道的对应解锁密码后的步骤,包括:The remote wireless data transmission method according to claim 6, wherein the step of receiving the corresponding unlock password of the data communication transmission channel comprises:
    接收解锁密码,并将所述解锁密码与预设解锁密码比对,在确认接收到的所述解锁密码与预设解锁密码一致时,确认接收到的所述解锁密码为所述数据通信传输通道的对应解锁密码。Receiving the unlocking password, and comparing the unlocking password with the preset unlocking password, and confirming that the received unlocking password is consistent with the preset unlocking password, confirming that the received unlocking password is the data communication transmission channel The corresponding unlock password.
  8. 如权利要求1所述的远程无线数据传输方法,其特征在于,所述在对终端进行身份验证通过后,为已通过身份验证的终端授权的步骤之前,还包括:The remote wireless data transmission method according to claim 1, wherein the step of authorizing the authenticated terminal after the authentication of the terminal is passed includes:
    在接收到终端发送的握手数据时,根据所述握手数据获取所述终端的身份信息,并根据所述身份信息在终端信息表中查询所述终端身份信息是否已登记;When receiving the handshake data sent by the terminal, acquiring the identity information of the terminal according to the handshake data, and querying, in the terminal information table, whether the terminal identity information is already registered according to the identity information;
    确认所述终端信息表已登记所述终端身份信息时,确认所述终端通过身份验证。When it is confirmed that the terminal identity information has been registered in the terminal information table, it is confirmed that the terminal passes the identity verification.
  9. 如权利要求8所述的远程无线数据传输方法,其特征在于,所述在接收到终端发送的握手数据时,根据所述握手数据获取所述终端的身份信息,并根据所述身份信息在终端信息表中查询所述终端身份信息是否已登记的步骤之前,还包括:The remote wireless data transmission method according to claim 8, wherein when receiving the handshake data sent by the terminal, the identity information of the terminal is acquired according to the handshake data, and the terminal information is used according to the identity information. Before the step of querying whether the terminal identity information has been registered in the information table, the method further includes:
    创建终端信息表,并登记对应终端身份信息;Create a terminal information table and register corresponding terminal identity information;
    设定各个终端的授权内容,并将所述授权内容与所述终端的身份信息关联保存。The authorized content of each terminal is set, and the authorized content is saved in association with the identity information of the terminal.
  10. 如权利要求1所述的远程无线数据传输方法,其特征在于,所述为已通过身份验证的终端授权的步骤包括:The remote wireless data transmission method according to claim 1, wherein the step of authorizing the authenticated terminal comprises:
    在所述终端身份验证通过之后,根据所述身份信息获取所述终端的授权内容;After the terminal identity verification is passed, acquiring the authorized content of the terminal according to the identity information;
    根据所述授权内容对所述终端进行授权。Authorizing the terminal according to the authorized content.
  11. 如权利要求10所述的远程无线数据传输方法,其特征在于,所述根据所述身份信息获取所述终端的授权内容的步骤,还包括:The remote wireless data transmission method according to claim 10, wherein the step of acquiring the authorized content of the terminal according to the identity information further comprises:
    提取已通过身份验证的所述终端的终端标识,以所述终端标识为条件在预设终端连接列表中查找所述终端的授权信息。Extracting the terminal identifier of the terminal that has been authenticated, and searching for the authorization information of the terminal in the preset terminal connection list on the condition that the terminal identifier is used.
  12. 如权利要求11所述的远程无线数据传输方法,其特征在于,所述提取已通过身份验证的所述终端的终端标识,以所述终端标识为条件在预设终端连接列表中查找所述终端的授权信息的步骤之后,还包括:The remote wireless data transmission method according to claim 11, wherein the terminal identifier of the terminal that has passed the authentication is extracted, and the terminal is searched for in the preset terminal connection list on the condition of the terminal identifier. After the steps of the authorization information, it also includes:
    基于已查找到所述终端的对应授权信息,读取所述授权信息的内容,以使所述终端对应访问数据服务器。The content of the authorization information is read based on the corresponding authorization information that has been found to the terminal, so that the terminal corresponds to access the data server.
  13. 如权利要求1所述的远程无线数据传输方法,其特征在于,所述以预设创建方式创建与所述授权终端对应的数据通讯传输通道的步骤,还包括:The remote wireless data transmission method according to claim 1, wherein the step of creating a data communication transmission channel corresponding to the authorized terminal in a preset creation manner further comprises:
    在所述授权终端的数量为多个时,分别创建与各授权终端对应的数据通讯传输通道;When the number of the authorized terminals is multiple, respectively, a data communication transmission channel corresponding to each authorized terminal is created;
    将各个终端的身份标识与终端对应的数据通讯传输通道关联保存,以根据所述身份标识识别接收到的通信数据的发送终端。The identity identifier of each terminal is associated with the data communication transmission channel corresponding to the terminal, to identify the transmitting terminal of the received communication data according to the identity identifier.
  14. 如权利要求1所述的远程无线数据传输方法,其特征在于,所述方法还包括:The remote wireless data transmission method according to claim 1, wherein the method further comprises:
    在身份验证成功后,基于所述数据通信传输通道应用的对应网络接口创建数据通讯传输通道,其中,所述身份验证应用用户接口与数据通信传输通道应用网络接口不同。After the authentication succeeds, a data communication transmission channel is created based on the corresponding network interface of the data communication transmission channel application, wherein the authentication application user interface is different from the data communication transmission channel application network interface.
  15. 一种远程无线数据传输装置,其特征在于,所述装置包括:存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,所述计算机程序被所述处理器执行时实现如权利要求1至14中任一项所述远程无线数据传输方法的步骤。A remote wireless data transmission device, comprising: a memory, a processor, and a computer program stored on the memory and operable on the processor, the computer program being The steps of the remote wireless data transmission method according to any one of claims 1 to 14 are implemented when executed.
  16. 一种计算机可读存储介质,其特征在于,所述计算机可读存储介质上存储有远程无线数据传输程序,所述远程无线数据传输程序被处理器执行时实现如权利要求1至14中任一项所述的远程无线数据传输方法的步骤。 A computer readable storage medium, characterized in that the computer readable storage medium stores a remote wireless data transmission program, and the remote wireless data transmission program is executed by a processor to implement any one of claims 1 to 14 The steps of the remote wireless data transmission method described in the item.
PCT/CN2017/094132 2017-06-01 2017-07-24 Method and device for remote wireless data transmission, and computer readable storage medium WO2018218764A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201710406864.7 2017-06-01
CN201710406864.7A CN107222538A (en) 2017-06-01 2017-06-01 Long distance wireless data transmission method, device and calculating readable storage medium storing program for executing

Publications (1)

Publication Number Publication Date
WO2018218764A1 true WO2018218764A1 (en) 2018-12-06

Family

ID=59947668

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2017/094132 WO2018218764A1 (en) 2017-06-01 2017-07-24 Method and device for remote wireless data transmission, and computer readable storage medium

Country Status (2)

Country Link
CN (1) CN107222538A (en)
WO (1) WO2018218764A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109819441A (en) * 2017-11-22 2019-05-28 触信(厦门)智能科技有限公司 A kind of resource-sharing and interactive approach

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101547097A (en) * 2009-02-11 2009-09-30 广州杰赛科技股份有限公司 Digital media management system and management method based on digital certificate
CN101668188A (en) * 2009-09-29 2010-03-10 中国电信股份有限公司 Video server and method for controlling working condition of video server
CN101841525A (en) * 2010-03-02 2010-09-22 中国联合网络通信集团有限公司 Secure access method, system and client
US20140230041A1 (en) * 2013-02-13 2014-08-14 Research In Motion Limited Secure electronic device application connection to an application server

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101447113A (en) * 2008-12-29 2009-06-03 浪潮齐鲁软件产业有限公司 Method for building Internet browser-based self-service client terminals
CN103944736A (en) * 2014-04-25 2014-07-23 天地融科技股份有限公司 Data security interactive method
CN104320782A (en) * 2014-10-27 2015-01-28 任子行网络技术股份有限公司 WiFi signal blocking system and method
CN104618401A (en) * 2015-03-10 2015-05-13 四川省宁潮科技有限公司 Real-name system-based wifi one-key logging method
CN105337962B (en) * 2015-09-30 2018-06-22 成都汇合乾元科技有限公司 A kind of smart machine login method
CN105391728A (en) * 2015-11-26 2016-03-09 国网北京市电力公司 Power information transmission method and apparatus

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101547097A (en) * 2009-02-11 2009-09-30 广州杰赛科技股份有限公司 Digital media management system and management method based on digital certificate
CN101668188A (en) * 2009-09-29 2010-03-10 中国电信股份有限公司 Video server and method for controlling working condition of video server
CN101841525A (en) * 2010-03-02 2010-09-22 中国联合网络通信集团有限公司 Secure access method, system and client
US20140230041A1 (en) * 2013-02-13 2014-08-14 Research In Motion Limited Secure electronic device application connection to an application server

Also Published As

Publication number Publication date
CN107222538A (en) 2017-09-29

Similar Documents

Publication Publication Date Title
WO2020147383A1 (en) Process examination and approval method, device and system employing blockchain system, and non-volatile storage medium
WO2014069783A1 (en) Password-based authentication method, and apparatus for performing same
WO2013025085A2 (en) Apparatus and method for supporting family cloud in cloud computing system
WO2018233352A1 (en) Data transmission method, device, terminal and computer-readable storage medium
WO2012141556A2 (en) Machine-to-machine node erase procedure
WO2015020360A1 (en) Method and device for registering and certifying device in wireless communication system
WO2018076865A1 (en) Data sharing method, device, storage medium, and electronic device
WO2020189926A1 (en) Method and server for managing user identity by using blockchain network, and method and terminal for user authentication using blockchain network-based user identity
WO2017096928A1 (en) Multi-terminal mapping system and method for virtual sim card
WO2017071363A1 (en) Password sharing method, password sharing system, and terminal device
WO2020186775A1 (en) Service data providing method, apparatus and device, and computer-readable storage medium
WO2020050424A1 (en) BLOCK CHAIN-BASED SYSTEM AND METHOD FOR MULTIPLE SECURITY AUTHENTICATION BETWEEN MOBILE TERMINAL AND IoT DEVICE
WO2015157942A1 (en) Device and method for accessing wireless network
WO2016123926A1 (en) Remote control based subscriber identity module card terminal management method and system
WO2020042464A1 (en) Data interaction method, apparatus and device, and readable storage medium
WO2023146308A1 (en) System for controlling network access on basis of controller, and method therefor
WO2021071116A1 (en) Simple authentication method and system using web storage of browser
WO2023085793A1 (en) System for controlling network access on basis of controller, and method therefor
WO2016095339A1 (en) Method for updating seed data in dynamic token
WO2020022700A1 (en) Secure element for processing and authenticating digital key and operation method therefor
WO2023211124A1 (en) System for controlling controller-based network connection and method for same
WO2020032351A1 (en) Method for establishing anonymous digital identity
WO2023211104A1 (en) System for controlling controller-based network access, and method related thereto
WO2016126023A1 (en) Broadcast apparatus and method of authenticating broadcast data
WO2022231304A1 (en) System for controlling controller-based network access, and method therefor

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17911922

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 19.05.2020)

122 Ep: pct application non-entry in european phase

Ref document number: 17911922

Country of ref document: EP

Kind code of ref document: A1