WO2019160304A1 - Low power environment-applicable beacon-based remote control system and method having high level security - Google Patents

Low power environment-applicable beacon-based remote control system and method having high level security Download PDF

Info

Publication number
WO2019160304A1
WO2019160304A1 PCT/KR2019/001710 KR2019001710W WO2019160304A1 WO 2019160304 A1 WO2019160304 A1 WO 2019160304A1 KR 2019001710 W KR2019001710 W KR 2019001710W WO 2019160304 A1 WO2019160304 A1 WO 2019160304A1
Authority
WO
WIPO (PCT)
Prior art keywords
random number
receiver
transmitter
control signal
beacon
Prior art date
Application number
PCT/KR2019/001710
Other languages
French (fr)
Korean (ko)
Inventor
김은서
김도형
Original Assignee
주식회사 커널로그
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 커널로그 filed Critical 주식회사 커널로그
Publication of WO2019160304A1 publication Critical patent/WO2019160304A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0435Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0631Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • H04L2209/805Lightweight hardware, e.g. radio-frequency identification [RFID] or sensor
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/70Reducing energy consumption in communication networks in wireless communication networks

Definitions

  • the present invention relates to a beacon-based remote control system and method, and more particularly to a beacon-based remote control system and method having a high level of security applicable in a low power environment.
  • Beacon is a short-range wireless communication device or a wireless communication method based on the Bluetooth 4.0 (BLE) protocol, and can communicate with devices within a maximum of 70m. High accuracy, low power consumption, inexpensive and small enough to distinguish 5 ⁇ 10cm units is suitable for the IoT, where all the devices are always connected.
  • BLE Bluetooth 4.0
  • beacons are relatively suitable for O2O services that connect online and offline because they support relatively long distance communication. Since both one-to-many and many-to-many services are possible, various active services such as advertisement and information transmission, home automation, and payment according to the user's taste can be provided. Recently, a beacon in the form of a sticker has also been developed, which can be used in various ways for remote control necessary to implement the Internet of Things, and it is also possible to remotely grasp the state of a crop or a machine by installing a beacon attached with an acceleration sensor or a temperature and humidity sensor.
  • beacons that are remotely controlled often require low power such that pairing is difficult.
  • communication consumes a lot of power, it is required to develop a beacon-based protocol that can have a high security level while reducing the number of communication.
  • Korean Patent No. 10-1796144 name of the invention: a user terminal, a remote control server and a user terminal control method using a beacon signal, published date: November 10, 2017
  • 10-2017-0130066 name of the invention: beacon attached remote control device location notification system via a mobile terminal, published date: November 28, 2017
  • the present invention has been proposed to solve the above problems of the conventionally proposed methods, the transmitter and receiver sharing the symmetric key, to enhance the security by using a random number and symmetric key encryption scheme, to transmit control signals, random numbers
  • the beacon with the high level of security that can be applied in the low power environment, which can be used at low power by applying the high level of security technology by reducing the number of times of high power consumption It is an object of the present invention to provide a remote control system and method.
  • the present invention by using the random number generator to store the random number generated in advance in the random number pool, and by using the random number stored in the random number pool in the random number transfer, by minimizing the reception waiting time of the transmitter to reduce power consumption It is another object of the present invention to provide a beacon-based remote control system and method having a high level of security applicable in a low power environment, which can be reduced and prevents security threats through random number generation prediction by a random number generator. .
  • a beacon-based remote control system having a high level of security applicable in a low power environment according to the characteristics of the present invention for achieving the above object
  • the transmitting unit transmits a control signal and receives a random number value from the receiving unit while waiting to receive, and transmits a ciphertext encrypted by using the shared symmetric key to the receiving unit,
  • the receiving unit receives the control signal from the transmitting unit, checks the MAC address received together with the control signal, and transmits the generated random number value to the transmitting unit, and decrypts the cipher text received from the transmitting unit to decrypt the random number value. If this coincides with each other, the control is performed using the received control signal.
  • the transmitting unit Preferably, the transmitting unit,
  • control signal may be transmitted again.
  • the transmitting unit Preferably, the transmitting unit,
  • the cipher text may be generated using the shared symmetric key.
  • the transmitting unit Preferably, the transmitting unit,
  • the random number value may be encrypted using an AES encryption algorithm.
  • the transmitting unit Preferably, the transmitting unit,
  • the random number received from the receiver and the data to be transmitted may be encrypted by using the symmetric key and transmitted.
  • the receiving unit Preferably, the receiving unit, the
  • the random number generator may store the random number generated in advance in the random number pool. If the MAC addresses match, the random number value may be taken in advance and stored in the random number pool and transmitted to the transmitter.
  • the receiving unit Preferably, the receiving unit, the
  • the received information is a control signal or a cipher text while waiting for reception.
  • a beacon-based remote control method having a high level of security applicable in a low power environment according to the characteristics of the present invention for achieving the above object
  • a remote control method for controlling a receiver using a beacon-based transmitter
  • the transmitting unit receiving a random number value from the receiving unit, encrypting the received random number value using a symmetric key shared by the transmitting unit and the receiving unit, and transmitting an encrypted cipher text to the receiving unit;
  • the reception unit decrypts the cipher text received from the transmission unit and, if the random number values match, executes control using the received control signal.
  • a transmitter and a receiver sharing a symmetric key can be secured using a random value and a symmetric key encryption scheme.
  • the receiver stores the random number generated in advance by using a random number generator in the random number pool, and by using the random number stored in the random number pool when the random number is transmitted, the power consumption by minimizing the reception waiting time of the transmitter Can be reduced, and security threats can be prevented through random number generation prediction by the random number generator.
  • FIG. 1 is a diagram showing the configuration of a beacon-based remote control system having a high level of security applicable in a low power environment according to an embodiment of the present invention.
  • FIG. 2 is a diagram illustrating an operation flow of a transmitter and a receiver in a beacon-based remote control system having a high level of security applicable in a low power environment according to an embodiment of the present invention.
  • FIG. 3 is a diagram illustrating a flow of a beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention.
  • step S200 is a diagram illustrating a detailed flow of step S200 in the beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention.
  • step S300 is a detailed flow diagram of step S300 in the beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention.
  • Receiving unit receives a control signal and checks the MAC address and transmits a random number
  • S300 a step in which the transmission unit receives the random number value and encrypts it
  • a beacon-based remote control system 100 having a high level of security applicable in a low power environment according to an embodiment of the present invention may include a receiver (eg, a beacon-based transmitter 110).
  • the remote control system 100 controlling the 120 may include a transmitter 110 and a receiver 120 sharing a symmetric key.
  • the transmitter 110 and the receiver 120 enhance security by using a random number value and a symmetric key encryption method, and minimize the number of communication by transmitting a control signal, receiving a random number value, and transmitting a cipher text, thereby consuming power. It can be applied at low power by reducing the number of communication times, and can enhance security.
  • the transmitter 110 and the receiver 120 may transmit and receive data based on the Bluetooth 4.0 protocol, which is one of short-range wireless communication.
  • the transmitter 110 may transmit a control signal and receive a random number value from the receiver 120 while waiting to receive the signal, and may transmit a ciphertext encrypted using the shared symmetric key to the receiver 120.
  • the transmitter 110 may be a transmitter 110 of the beacon device that requires low power.
  • the receiver 120 is a receiver 120 of the control target device, and the control target device receives a control signal from the beacon apparatus through the receiver 120 and performs an operation according to the control signal, thereby performing remote control by the beacon apparatus. Can be implemented.
  • the receiving unit 120 receives a control signal from the transmitting unit 110, checks the received MAC address together with the control signal, and transmits the generated random number value to the transmitting unit 110 if it matches.
  • the control may be executed using the received control signal. For example, various controls including on / off of a light and on / off of a device can be executed.
  • the MAC address means a unique address of the device, and may include an address uniquely assigned by a user or an administrator, in addition to a unique address previously assigned by the manufacturer. In other words, if the MAC address is unique information that can identify the device, the MAC address may serve as the MAC address of the present invention regardless of the person giving the information or the specific characteristic of the information.
  • each component of the beacon-based remote control system 100 having a high level of security applicable in a low power environment according to an embodiment of the present invention will be described in detail. .
  • FIG. 2 is a view illustrating an operation flow of the transmitter 110 and the receiver 120 in the beacon-based remote control system 100 having a high level of security applicable in a low power environment according to an embodiment of the present invention. to be.
  • the beacon-based remote control system 100 having a high level of security applicable in a low power environment according to an embodiment of the present invention the most preferable case while maintaining a high level of security Remote control is possible with only three data transmission / reception (control signal, random number and cipher text).
  • the transmitter 110 of the beacon apparatus may be turned on and a control signal may be transmitted.
  • the control signal may be various signals including on / off signals of various devices.
  • the control signal may be transmitted by attaching a MAC address of the transmitter 110.
  • the receiver 120 When the receiver 120 is in the standby state and receives the control signal from the transmitter 110, the receiver 120 may check whether the MAC address attached to the control signal matches. If the MAC address is different from the MAC address of the transmitter 110 which is supposed to transmit the control signal, the MAC address may return to the standby state without further progressing.
  • the receiver 120 may transmit a random number generated by the random number generator to the transmitter 110, and the MAC address of the receiver 120 may be attached to the random number.
  • the receiver 120 may generate a random number in the random number generator and transmit the random number to the transmitter 110 when the random number is needed, but stores the random number generated in advance by using the random number generator in the random number pool, and the MAC address matches. If so, the random number stored in advance in the random number pool may be transmitted to the transmitter 110. More specifically, about 1000 random numbers may be generated and stored in advance in the random number pool.
  • the receiver 120 may bring 8 random numbers of 8 random numbers and transmit them to the transmitter 110. have.
  • the receiver 120 stores a random number generated in advance by using a random number generator in a random number pool, and uses random numbers prestored in the random number pool when random numbers are transmitted, thereby predicting random number generation by the random number generator. Security threats can be prevented, and the random number can be transmitted quickly, thereby minimizing reception waiting time of the transmitter 110 and reducing power consumption.
  • the transmitter 110 is in a reception standby state to transmit a control signal and receive a random value from the receiver 120, and when a predetermined time elapses, the transmitter 110 may report that the random number has failed to be transmitted and transmit the control signal again.
  • the predetermined time is set to a very short time such as 1 ms, so that quick remote control can be enabled.
  • the transmitter 110 When the transmitter 110 receives a random value from the receiver 120 while waiting for reception, it checks the MAC address received from the receiver 120 together with the random number, and if it matches, generates a cipher text using a shared symmetric key. have. That is, when the transmitter 110 receives a random value from the receiver 120, the transmitter 110 checks the MAC address of the receiver 120, and when the MAC address mismatches, the transmitter 110 returns to the reception standby state.
  • the transmitter 110 returns to the reception standby state again. If it takes 0.2 ms to check the MAC address, it waits an additional 0.3 ms in a waiting state, and if a random value is not received even during 0.3 ms, it may be regarded as having failed to receive a random number and may transmit a control signal again.
  • the transmitter 110 may transmit the encrypted text encrypted with the received random number value using the shared symmetric key to the receiver 120.
  • the transmitter 110 may use various symmetric key encryption algorithms, and more specifically, may encrypt random numbers using the AES encryption algorithm.
  • the transmitter 110 may encrypt and transmit the random number value and the transmission target data received from the receiver 120 using a symmetric key. That is, when there is data to be transmitted to the receiver 120 (that is, data to be transmitted) by the transmitter 110, the transmitter 110 may encrypt the data to be transmitted together with a random number and transmit the data to the receiver 120.
  • the transmission target data may include private data such as financial information.
  • the transmission unit 110 that transmits the cipher text can be immediately terminated to maintain a low power.
  • Receiving unit 120 determines whether the information received during the reception after the transmission of the random number value is a control signal or a cipher text, and if the determination result is a cipher text, decrypts the cipher text received from the transmitter 110, if the random number value is matched, Control can be performed using control signals. For example, if the control signal is an ON signal of a lamp, the lighting control can be executed. On the other hand, if the determination result is a control signal, the receiver 120 may execute again from the process of confirming the MAC address. At this time, the receiver 120 may determine the signal that is not the control signal as an unconditional cipher text.
  • the reception unit 120 may check the MAC address even when receiving the cipher text, and may wait to receive until a signal matching the MAC address is received.
  • a beacon-based remote control method having a high level of security applicable in a low power environment may include: transmitting, by the transmitter 110, a control signal and waiting to be received.
  • the receiving unit 120 receives the control signal and checks the MAC address and transmits a random number value (S200), the transmitting unit 110 receives and encrypts and transmits the random number value (S300) and the receiving unit (
  • the control may be implemented by using the control signal (S400).
  • the transmitter 110 may transmit a control signal and wait for reception. In this case, the transmitter 110 may transmit the control signal and transmit the control signal again when a predetermined time elapses in the reception standby state.
  • step S200 when the receiving unit 120 receives the control signal from the transmitting unit 110 and checks and matches the received MAC address with the control signal, the receiving unit 120 may transmit the random number stored in advance to the transmitting unit 110 to the transmitting unit 110. have.
  • the detailed flow of step S200 will be described in detail later with reference to FIG. 4.
  • step S300 the transmitter 110 receives a random value from the receiver 120, encrypts the received random number using a symmetric key shared between the transmitter 110 and the receiver 120, and encrypts the encrypted cipher text.
  • the receiver 120 may transmit the data. The detailed flow of step S300 will be described in detail later with reference to FIG. 5.
  • step S400 when the reception unit 120 decrypts the cipher text received from the transmission unit 110 and the random numbers match, the reception unit 120 may execute control using the received control signal. That is, in step S400, the receiver 120 may transmit a control signal to a controller (not shown) of the control target device so that remote control by the control signal is executed.
  • the receiving unit 120 is in the reception waiting state after the transmission of the random number value in step S200, and determines whether the information received by the receiving unit 120 in the reception standby state is a control signal or a cipher text, and if the determination result control step S400 You can go back to step S200 to check your Mac address without running.
  • step S200 of the beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention the receiver 120, from the transmitter 110 Receiving a control signal (S210), the step of checking whether the MAC address match (S220) and transmitting a random value to the transmitter 110 (S230) can be implemented.
  • the receiver 120 may receive a control signal from the transmitter 110.
  • the MAC address of the transmitter 110 may be received together with the control signal.
  • the reception of the control signal may be by a short range wireless communication method based on a beacon.
  • step S220 the receiver 120 may check whether the MAC addresses match. That is, the MAC address received with the control signal in step S210 is checked, and if it matches with the MAC address of the beacon device having the control authority for the control target device, the process proceeds to the next step S230, and if it does not match, the standby state before the step S210 You can go back to
  • the receiver 120 may transmit a random value to the transmitter 110.
  • the reception unit 120 may transmit the random number generated by the random number generator.
  • the reception unit 120 may import the random number generated by using the random number generator and pre-stored in the random number pool, and transmit the random number to the transmitter 110. .
  • step S300 of the beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention the transmitter 110, from the receiver 120 Receiving a random value (S310), a step of checking whether the MAC address match (S320) and the step of encrypting and transmitting the random number using a symmetric key (S330) can be implemented.
  • S310 a random value
  • S320 a step of checking whether the MAC address match
  • S330 the step of encrypting and transmitting the random number using a symmetric key
  • step S310 the transmitter 110 may receive a random value from the receiver 120.
  • the transmitter 110 may receive the random number value of step S310 in the reception standby state of step S100.
  • the transmitter 110 may receive the MAC address of the receiver 120 together with the random number.
  • step S320 the transmitter 110 may check whether the MAC address received from the receiver 120 in step S310 matches. That is, in steps S220 and S320, the transmitter 110 and the receiver 120 may check each other's MAC address, thereby enabling remote control by a legitimate device.
  • step S320 if the transmitter 110 checks the MAC address received from the receiver 120 together with the random number and matches, it executes the next step S330, and if it does not match, the transmitter 110 returns to the reception standby state of step S110 again. have.
  • the transmitter 110 may encrypt and transmit the random number using a symmetric key. That is, in step S330, the cipher text may be generated using a symmetric key shared by the transmitter 110 and the receiver 120. More specifically, the random number value may be encrypted using the AES encryption algorithm.
  • the transmitter 110 may encrypt and transmit the data to be transmitted using a symmetric key together with the random number value received from the receiver 120.
  • the data is encrypted and transmitted together with the random number, so that the security can be strengthened and the data to be transmitted is transmitted together with the random number in one communication. Power consumption by communication can be reduced and economical.
  • the beacon-based remote control system and method having a high level of security applicable in a low power environment according to an embodiment of the present invention, the transmitter 110 and the receiver 120 sharing a symmetric key Security by using random number and symmetric key encryption method, and minimizing the number of communication by transmitting control signal, receiving random value and transmitting cipher text, reducing the number of communication with high power consumption Technology can be applied.

Abstract

According to a low power environment-applicable beacon-based remote control system and method having high level security proposed by the present invention, a transmitting unit and a receiving unit sharing a symmetric key use a random number value and a symmetric key encryption method to enhance security, and minimize, through control signal transmission, random number value reception, and cryptogram transmission, the number of times communication is performed. Therefore, the present invention can reduce the number of times high power consumption communication is performed and thus enables application of a high level security technology available in a low power environment.

Description

저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템 및 방법Beacon based remote control system and method with high security applicable in low power environment
본 발명은 비콘 기반의 원격 제어 시스템 및 방법에 관한 것으로서, 보다 구체적으로는 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템 및 방법에 관한 것이다.The present invention relates to a beacon-based remote control system and method, and more particularly to a beacon-based remote control system and method having a high level of security applicable in a low power environment.
비콘은 블루투스4.0(BLE) 프로토콜 기반의 근거리 무선통신 장치 또는 무선통신 방법으로서, 최대 70m 이내의 장치들과 교신할 수 있다. 5~10㎝ 단위의 구별이 가능할 정도로 정확성이 높고, 전력 소모가 적으며, 저렴하고 크기도 작아, 모든 기기가 항상 연결되는 사물인터넷 구현에 적합하다.Beacon is a short-range wireless communication device or a wireless communication method based on the Bluetooth 4.0 (BLE) protocol, and can communicate with devices within a maximum of 70m. High accuracy, low power consumption, inexpensive and small enough to distinguish 5 ~ 10cm units is suitable for the IoT, where all the devices are always connected.
또한, 근거리 무선통신(NFC)이 접촉식으로 20㎝ 이내의 근거리에서만 통신이 가능한 반면, 비콘은 비접촉식으로 상대적으로 원거리 통신을 지원하므로 온라인과 오프라인을 연결하는 O2O 서비스에도 적합하다. 일대다 및 다대다 서비스 모두 가능하기 때문에 사용자의 취향에 맞는 광고 및 정보 전송, 홈오토메이션, 결제 등의 다양한 능동형 서비스 등을 제공할 수 있어 주목받고 있다. 최근에는 스티커 형태의 비콘도 개발되어 사물인터넷 구현에 필요한 원격 제어에 다양하게 사용이 가능하며, 가속도 센서나 온습도 센서를 부착한 비콘을 설치하여 농작물이나 기계의 상태를 원격으로 파악하는 것도 가능하다.In addition, while near field communication (NFC) can only communicate within a short distance within 20 cm by contact, beacons are relatively suitable for O2O services that connect online and offline because they support relatively long distance communication. Since both one-to-many and many-to-many services are possible, various active services such as advertisement and information transmission, home automation, and payment according to the user's taste can be provided. Recently, a beacon in the form of a sticker has also been developed, which can be used in various ways for remote control necessary to implement the Internet of Things, and it is also possible to remotely grasp the state of a crop or a machine by installing a beacon attached with an acceleration sensor or a temperature and humidity sensor.
이와 같이, 각종 기기와 서비스가 연결되는 사물인터넷의 안전한 구현을 위해, 비콘 기반의 원격 제어에도 높은 수준의 보안 기술의 적용이 요구되고 있다.As such, in order to securely implement the IoT through which various devices and services are connected, a high level of security technology is required to beacon-based remote control.
한편, 원격으로 제어되는 대부분의 비콘은, 페어링이 어려울 정도의 저전력을 요구하는 경우가 많다. 특히, 통신에는 많은 전력이 소모되므로, 통신 횟수를 줄이면서도 높은 보안 수준을 가질 수 있는 비콘 기반 프로토콜의 개발이 요구되고 있다.On the other hand, most beacons that are remotely controlled often require low power such that pairing is difficult. In particular, since communication consumes a lot of power, it is required to develop a beacon-based protocol that can have a high security level while reducing the number of communication.
본 발명과 관련된 선행기술로서, 등록특허 제10-1796144호(발명의 명칭: 사용자 단말기, 원격 제어 서버 및 비콘 신호를 이용한 사용자 단말기 제어 방법, 공고일자: 2017년 11월 10일), 공개특허 제10-2017-0130066호(발명의 명칭: 이동 단말기를 통한 비콘 부착 원격 제어 장치 위치 알림 시스템, 공개일자: 2017년 11월 28일) 등이 개시된 바 있다.As a prior art related to the present invention, Korean Patent No. 10-1796144 (name of the invention: a user terminal, a remote control server and a user terminal control method using a beacon signal, published date: November 10, 2017), 10-2017-0130066 (name of the invention: beacon attached remote control device location notification system via a mobile terminal, published date: November 28, 2017) and the like has been disclosed.
그러나 이와 같은 종래의 기술에서는 비콘을 이용한 원격 제어 등에 초점을 맞추고 있을 뿐, 저전력 상황을 고려한 보안 기술의 적용에 대해서는 아직까지 개발된 바가 없는 실정이다.However, such a conventional technology focuses only on remote control using beacons, and has not yet been developed for the application of security technology considering a low power situation.
본 발명은 기존에 제안된 방법들의 상기와 같은 문제점들을 해결하기 위해 제안된 것으로서, 대칭키를 공유하는 송신부 및 수신부가, 난수값 및 대칭키 암호화 방식을 이용해 보안을 강화하고, 제어 신호 전송, 난수값 수신 및 암호문 전송으로 통신 횟수를 최소화함으로써, 전력 소모가 많은 통신 횟수를 줄여 저전력에서 사용이 가능하면서도 높은 수준의 보안 기술을 적용할 수 있는, 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템 및 방법을 제공하는 것을 그 목적으로 한다.The present invention has been proposed to solve the above problems of the conventionally proposed methods, the transmitter and receiver sharing the symmetric key, to enhance the security by using a random number and symmetric key encryption scheme, to transmit control signals, random numbers By minimizing the number of communication by receiving the value and transmitting the cipher text, the beacon with the high level of security that can be applied in the low power environment, which can be used at low power by applying the high level of security technology by reducing the number of times of high power consumption It is an object of the present invention to provide a remote control system and method.
또한, 본 발명은, 수신부가 난수 생성기를 이용해 미리 생성된 난수값을 난수 풀에 저장하고, 난수값 전송 시 난수 풀에 미리 저장된 난수값을 사용함으로써, 송신부의 수신 대기 시간을 최소화하여 전력 소모를 줄일 수 있고, 난수 생성기에 의한 난수 생성 예측을 통한 보안 위협을 방지할 수 있는, 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템 및 방법을 제공하는 것을 또 다른 목적으로 한다.In addition, the present invention, by using the random number generator to store the random number generated in advance in the random number pool, and by using the random number stored in the random number pool in the random number transfer, by minimizing the reception waiting time of the transmitter to reduce power consumption It is another object of the present invention to provide a beacon-based remote control system and method having a high level of security applicable in a low power environment, which can be reduced and prevents security threats through random number generation prediction by a random number generator. .
상기한 목적을 달성하기 위한 본 발명의 특징에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템은,A beacon-based remote control system having a high level of security applicable in a low power environment according to the characteristics of the present invention for achieving the above object,
비콘 기반의 송신부를 이용해 수신부를 제어하는 원격 제어 시스템으로서,A remote control system for controlling the receiver using a beacon-based transmitter,
대칭키를 공유하는 송신부 및 수신부를 포함하되,Including a transmitter and a receiver sharing a symmetric key,
상기 송신부는, 제어 신호를 전송하고 수신 대기 중 상기 수신부로부터 난수값을 수신하며, 수신한 난수값을 공유된 대칭키를 이용해 암호화한 암호문을 상기 수신부에 전송하며,The transmitting unit transmits a control signal and receives a random number value from the receiving unit while waiting to receive, and transmits a ciphertext encrypted by using the shared symmetric key to the receiving unit,
상기 수신부는, 상기 송신부로부터 상기 제어 신호를 수신하고, 상기 제어 신호와 함께 수신된 맥 주소를 확인하여 일치하면 생성된 난수값을 상기 송신부에 전송하며, 상기 송신부로부터 전송받은 암호문을 복호화하여 난수값이 일치하면, 상기 수신한 제어 신호를 이용해 제어를 실행하는 것을 그 구성상의 특징으로 한다.The receiving unit receives the control signal from the transmitting unit, checks the MAC address received together with the control signal, and transmits the generated random number value to the transmitting unit, and decrypts the cipher text received from the transmitting unit to decrypt the random number value. If this coincides with each other, the control is performed using the received control signal.
바람직하게는, 상기 송신부는,Preferably, the transmitting unit,
상기 제어 신호를 전송하고 수신 대기 상태에서 미리 정해진 시간이 경과하면, 다시 제어 신호를 전송할 수 있다.If a predetermined time elapses after the control signal is transmitted and is in a standby state, the control signal may be transmitted again.
바람직하게는, 상기 송신부는,Preferably, the transmitting unit,
상기 난수값과 함께 상기 수신부로부터 수신한 맥 주소를 확인하여 일치하면, 상기 공유된 대칭키를 이용해 암호문을 생성할 수 있다.If the MAC address received from the receiver together with the random number is checked and matched, the cipher text may be generated using the shared symmetric key.
바람직하게는, 상기 송신부는,Preferably, the transmitting unit,
AES 암호화 알고리즘을 이용하여 상기 난수값을 암호화할 수 있다.The random number value may be encrypted using an AES encryption algorithm.
바람직하게는, 상기 송신부는,Preferably, the transmitting unit,
상기 수신부로부터 수신한 난수값 및 송신 대상 데이터를 상기 대칭키를 이용해 암호화하여 전송할 수 있다.The random number received from the receiver and the data to be transmitted may be encrypted by using the symmetric key and transmitted.
바람직하게는, 상기 수신부는,Preferably, the receiving unit,
난수 생성기를 이용해 미리 생성된 난수값을 난수 풀에 저장하며, 맥 주소가 일치하면 난수 풀에 미리 저장된 난수값을 가져 와서 상기 송신부에 전송할 수 있다.The random number generator may store the random number generated in advance in the random number pool. If the MAC addresses match, the random number value may be taken in advance and stored in the random number pool and transmitted to the transmitter.
바람직하게는, 상기 수신부는,Preferably, the receiving unit,
상기 난수값 전송 후 수신 대기 중 수신한 정보가 제어 신호인지 암호문인지 판단하며, 판단 결과 제어 신호이면 다시 맥 주소를 확인할 수 있다.After the random number is transmitted, it is determined whether the received information is a control signal or a cipher text while waiting for reception.
상기한 목적을 달성하기 위한 본 발명의 특징에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법은,A beacon-based remote control method having a high level of security applicable in a low power environment according to the characteristics of the present invention for achieving the above object,
비콘 기반의 송신부를 이용해 수신부를 제어하는 원격 제어 방법으로서,A remote control method for controlling a receiver using a beacon-based transmitter,
(1) 상기 송신부가, 제어 신호를 전송하고 수신 대기하는 단계;(1) the transmitting unit, waiting to receive and transmit a control signal;
(2) 상기 수신부가, 상기 송신부로부터 상기 제어 신호를 수신하고, 상기 제어 신호와 함께 수신된 맥 주소를 확인하여 일치하면, 난수 풀에 미리 저장된 난수값을 상기 송신부에 전송하는 단계;(2) the receiving unit receiving the control signal from the transmitting unit, checking and matching the received MAC address with the control signal, and transmitting, to the transmitting unit, a random number stored in advance in a random number pool;
(3) 상기 송신부가, 상기 수신부로부터 난수값을 수신하며, 수신한 난수값을 상기 송신부와 수신부가 공유하는 대칭키를 이용해 암호화하고, 암호화 된 암호문을 상기 수신부에 전송하는 단계; 및(3) the transmitting unit receiving a random number value from the receiving unit, encrypting the received random number value using a symmetric key shared by the transmitting unit and the receiving unit, and transmitting an encrypted cipher text to the receiving unit; And
(4) 상기 수신부가, 상기 송신부로부터 전송받은 암호문을 복호화하여 난수값이 일치하면, 상기 수신한 제어 신호를 이용해 제어를 실행하는 단계를 포함하는 것을 그 구성상의 특징으로 한다.And (4) the reception unit decrypts the cipher text received from the transmission unit and, if the random number values match, executes control using the received control signal.
본 발명에서 제안하고 있는 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템 및 방법에 따르면, 대칭키를 공유하는 송신부 및 수신부가, 난수값 및 대칭키 암호화 방식을 이용해 보안을 강화하고, 제어 신호 전송, 난수값 수신 및 암호문 전송으로 통신 횟수를 최소화함으로써, 전력 소모가 많은 통신 횟수를 줄여 저전력에서 사용이 가능하면서도 높은 수준의 보안 기술을 적용할 수 있다.According to the beacon-based remote control system and method having a high level of security applicable in a low power environment proposed by the present invention, a transmitter and a receiver sharing a symmetric key can be secured using a random value and a symmetric key encryption scheme. By minimizing the number of communication by strengthening the control signal transmission, receiving a random number value and transmitting a cipher text, it is possible to apply a high level of security technology while using at low power by reducing the number of power consuming communication.
또한, 본 발명에 따르면, 수신부가 난수 생성기를 이용해 미리 생성된 난수값을 난수 풀에 저장하고, 난수값 전송 시 난수 풀에 미리 저장된 난수값을 사용함으로써, 송신부의 수신 대기 시간을 최소화하여 전력 소모를 줄일 수 있고, 난수 생성기에 의한 난수 생성 예측을 통한 보안 위협을 방지할 수 있다.In addition, according to the present invention, the receiver stores the random number generated in advance by using a random number generator in the random number pool, and by using the random number stored in the random number pool when the random number is transmitted, the power consumption by minimizing the reception waiting time of the transmitter Can be reduced, and security threats can be prevented through random number generation prediction by the random number generator.
도 1은 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템의 구성을 도시한 도면.1 is a diagram showing the configuration of a beacon-based remote control system having a high level of security applicable in a low power environment according to an embodiment of the present invention.
도 2는 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템에서, 송신부 및 수신부의 동작 흐름을 도시한 도면.2 is a diagram illustrating an operation flow of a transmitter and a receiver in a beacon-based remote control system having a high level of security applicable in a low power environment according to an embodiment of the present invention.
도 3은 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법의 흐름을 도시한 도면.3 is a diagram illustrating a flow of a beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention.
도 4는 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법에서, 단계 S200의 세부적인 흐름을 도시한 도면.4 is a diagram illustrating a detailed flow of step S200 in the beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention.
도 5는 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법에서, 단계 S300의 세부적인 흐름을 도시한 도면.5 is a detailed flow diagram of step S300 in the beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention.
<부호의 설명><Description of the code>
100: 본 발명의 일실시예에 따른 원격 제어 시스템100: remote control system according to an embodiment of the present invention
110: 송신부110: transmitter
120: 수신부120: receiver
S100: 송신부가 제어 신호를 전송하고 수신 대기하는 단계S100: Transmitting step for transmitting and receiving a control signal
S200: 수신부가 제어 신호를 수신하고 맥 주소를 확인하여 난수값을 전송하는 단계S200: Receiving unit receives a control signal and checks the MAC address and transmits a random number
S210: 송신부로부터 제어 신호를 수신하는 단계S210: Receiving a control signal from the transmitter
S220: 맥 주소의 일치 여부를 확인하는 단계S220: steps to check if the MAC address matches
S230: 난수값을 송신부에 전송하는 단계S230: step of transmitting a random value to the transmitter
S300: 송신부가 난수값을 수신하고 암호화하여 전송하는 단계S300: a step in which the transmission unit receives the random number value and encrypts it
S310: 수신부로부터 난수값을 수신하는 단계S310: Receiving a random number value from the receiver
S320: 맥 주소의 일치 여부를 확인하는 단계S320: Steps to check if Mac addresses match
S330: 난수값을 대칭키를 이용해 암호화하여 전송하는 단계S330: encrypting and transmitting a random value using a symmetric key
S400: 수신부가 암호문을 복호화하여 난수값이 일치하면, 제어 신호를 이용해 제어를 실행하는 단계S400: If the receiver decrypts the cipher text and the random numbers match, executing the control using the control signal
이하, 첨부된 도면을 참조하여 본 발명이 속하는 기술분야에서 통상의 지식을 가진 자가 본 발명을 용이하게 실시할 수 있도록 바람직한 실시예를 상세히 설명한다. 다만, 본 발명의 바람직한 실시예를 상세하게 설명함에 있어, 관련된 공지 기능 또는 구성에 대한 구체적인 설명이 본 발명의 요지를 불필요하게 흐릴 수 있다고 판단되는 경우에는 그 상세한 설명을 생략한다. 또한, 유사한 기능 및 작용을 하는 부분에 대해서는 도면 전체에 걸쳐 동일한 부호를 사용한다.Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings so that those skilled in the art may easily implement the present invention. However, in describing the preferred embodiment of the present invention in detail, if it is determined that the detailed description of the related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. In addition, the same reference numerals are used throughout the drawings for parts having similar functions and functions.
덧붙여, 명세서 전체에서, 어떤 부분이 다른 부분과 ‘연결’ 되어 있다고 할 때, 이는 ‘직접적으로 연결’ 되어 있는 경우뿐만 아니라, 그 중간에 다른 소자를 사이에 두고 ‘간접적으로 연결’ 되어 있는 경우도 포함한다. 또한, 어떤 구성요소를 ‘포함’ 한다는 것은, 특별히 반대되는 기재가 없는 한 다른 구성요소를 제외하는 것이 아니라 다른 구성요소를 더 포함할 수 있다는 것을 의미한다.In addition, in the specification, when a part is 'connected' to another part, it is not only 'directly connected' but also 'indirectly connected' with another element in between. Include. In addition, the term "comprising" a certain component means that the component may further include other components, except for the case where there is no contrary description.
도 1은 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100)의 구성을 도시한 도면이다. 도 1에 도시된 바와 같이, 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100)은, 비콘 기반의 송신부(110)를 이용해 수신부(120)를 제어하는 원격 제어 시스템(100)으로서, 대칭키를 공유하는 송신부(110) 및 수신부(120)를 포함하여 구성될 수 있다.1 is a diagram illustrating a configuration of a beacon-based remote control system 100 having a high level of security applicable in a low power environment according to an embodiment of the present invention. As shown in FIG. 1, a beacon-based remote control system 100 having a high level of security applicable in a low power environment according to an embodiment of the present invention may include a receiver (eg, a beacon-based transmitter 110). The remote control system 100 controlling the 120 may include a transmitter 110 and a receiver 120 sharing a symmetric key.
즉, 본 발명은, 송신부(110) 및 수신부(120)가, 난수값 및 대칭키 암호화 방식을 이용해 보안을 강화하고, 제어 신호 전송, 난수값 수신 및 암호문 전송으로 통신 횟수를 최소화함으로써, 전력 소모가 많은 통신 횟수를 줄여 저전력에서 적용이 가능하면서도 보안을 강화할 수 있다. 여기에서, 송신부(110) 및 수신부(120)는 근거리 무선 통신의 하나인 블루투스4.0 프로토콜 기반으로 데이터를 송수신할 수 있다.That is, according to the present invention, the transmitter 110 and the receiver 120 enhance security by using a random number value and a symmetric key encryption method, and minimize the number of communication by transmitting a control signal, receiving a random number value, and transmitting a cipher text, thereby consuming power. It can be applied at low power by reducing the number of communication times, and can enhance security. Here, the transmitter 110 and the receiver 120 may transmit and receive data based on the Bluetooth 4.0 protocol, which is one of short-range wireless communication.
송신부(110)는, 제어 신호를 전송하고 수신 대기 중 수신부(120)로부터 난수값을 수신하며, 수신한 난수값을 공유된 대칭키를 이용해 암호화한 암호문을 수신부(120)에 전송할 수 있다. 여기에서 송신부(110)는 저전력이 요구되는 비콘 장치의 송신부(110)일 수 있다.The transmitter 110 may transmit a control signal and receive a random number value from the receiver 120 while waiting to receive the signal, and may transmit a ciphertext encrypted using the shared symmetric key to the receiver 120. Here, the transmitter 110 may be a transmitter 110 of the beacon device that requires low power.
수신부(120)는, 제어 대상 장치의 수신부(120)로서, 제어 대상 장치는 수신부(120)를 통해 비콘 장치로부터 제어 신호를 수신하여 제어 신호에 따른 동작을 수행함으로써, 비콘 장치에 의한 원격 제어를 구현할 수 있다.The receiver 120 is a receiver 120 of the control target device, and the control target device receives a control signal from the beacon apparatus through the receiver 120 and performs an operation according to the control signal, thereby performing remote control by the beacon apparatus. Can be implemented.
보다 구체적으로는, 수신부(120)는, 송신부(110)로부터 제어 신호를 수신하고, 제어 신호와 함께 수신된 맥 주소를 확인하여 일치하면 생성된 난수값을 송신부(110)에 전송하며, 송신부(110)로부터 전송받은 암호문을 복호화하여 난수값이 일치하면, 수신한 제어 신호를 이용해 제어를 실행할 수 있다. 예를 들어, 전등의 온/오프, 장치의 온/오프를 포함한 각종 제어 등을 실행할 수 있다.More specifically, the receiving unit 120 receives a control signal from the transmitting unit 110, checks the received MAC address together with the control signal, and transmits the generated random number value to the transmitting unit 110 if it matches. When the cipher text received from 110 is decrypted and the random number is identical, the control may be executed using the received control signal. For example, various controls including on / off of a light and on / off of a device can be executed.
본 발명에서 맥 주소는 기기의 고유한 주소를 의미하는 것으로서, 제조사가 미리 부여한 고유한 주소 이외에도 사용자나 관리자 등이 고유하게 부여한 주소를 포함할 수 있다. 즉, 맥 주소는 그것이 기기를 식별할 수 있는 고유한 정보라면, 해당 정보를 부여한 자나 그 정보의 구체적인 특징에 관계없이 본 발명의 맥 주소의 역할을 얼마든지 할 수 있다.In the present invention, the MAC address means a unique address of the device, and may include an address uniquely assigned by a user or an administrator, in addition to a unique address previously assigned by the manufacturer. In other words, if the MAC address is unique information that can identify the device, the MAC address may serve as the MAC address of the present invention regardless of the person giving the information or the specific characteristic of the information.
이하에서는, 도 2를 참조하여, 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100)을 구성하는 각 구성요소에 대해서 상세히 설명하도록 한다.Hereinafter, referring to FIG. 2, each component of the beacon-based remote control system 100 having a high level of security applicable in a low power environment according to an embodiment of the present invention will be described in detail. .
도 2는 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100)에서, 송신부(110) 및 수신부(120)의 동작 흐름을 도시한 도면이다. 도 2에 도시된 바와 같이, 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100)에서는, 높은 수준의 보안성을 유지하면서도 가장 바람직한 경우 3번의 데이터 송수신(제어신호, 난수값 및 암호문의 송수신)만으로 원격 제어를 할 수 있다.2 is a view illustrating an operation flow of the transmitter 110 and the receiver 120 in the beacon-based remote control system 100 having a high level of security applicable in a low power environment according to an embodiment of the present invention. to be. As shown in FIG. 2, in the beacon-based remote control system 100 having a high level of security applicable in a low power environment according to an embodiment of the present invention, the most preferable case while maintaining a high level of security Remote control is possible with only three data transmission / reception (control signal, random number and cipher text).
먼저, 비콘 장치의 송신부(110)가 켜지고 제어 신호가 송신될 수 있다. 제어 신호는 각종 기기의 온/오프 신호를 포함하는 각종 신호가 될 수 있다. 제어 신호에는 송신부(110)의 맥 주소(Mac Address)가 부착되어 송신될 수 있다.First, the transmitter 110 of the beacon apparatus may be turned on and a control signal may be transmitted. The control signal may be various signals including on / off signals of various devices. The control signal may be transmitted by attaching a MAC address of the transmitter 110.
수신부(120)는, 대기 상태에 있다가 송신부(110)로부터 제어 신호를 수신하면, 제어 신호에 부착된 맥 주소의 일치 여부를 확인할 수 있다. 맥 주소가 제어 신호를 송신하기로 되어 있는 송신부(110)의 맥 주소와 상이하면, 더 이상 진행하지 않고 대기 상태로 돌아갈 수 있다.When the receiver 120 is in the standby state and receives the control signal from the transmitter 110, the receiver 120 may check whether the MAC address attached to the control signal matches. If the MAC address is different from the MAC address of the transmitter 110 which is supposed to transmit the control signal, the MAC address may return to the standby state without further progressing.
맥 주소가 일치하면, 수신부(120)는 난수 생성기에서 생성된 난수값을 송신부(110)에 전송할 수 있으며, 이때 난수값에는 수신부(120)의 맥 주소가 부착될 수 있다. 수신부(120)는, 난수값이 필요할 때 난수 생성기에서 난수값을 생성하여 송신부(110)에 전송할 수도 있으나, 난수 생성기를 이용해 미리 생성된 난수를 난수 풀(Pool)에 저장하며, 맥 주소가 일치하면 난수 풀에 미리 저장된 난수를 가져 와서 송신부(110)에 전송할 수 있다. 보다 구체적으로는, 난수 풀에는 1000개 정도의 난수가 미리 생성되어 저장될 수 있으며, 수신부(120)는 난수값이 필요할 때 8개 난수로 된 8byte의 난수값을 가져와 송신부(110)에 전송할 수 있다.If the MAC addresses match, the receiver 120 may transmit a random number generated by the random number generator to the transmitter 110, and the MAC address of the receiver 120 may be attached to the random number. The receiver 120 may generate a random number in the random number generator and transmit the random number to the transmitter 110 when the random number is needed, but stores the random number generated in advance by using the random number generator in the random number pool, and the MAC address matches. If so, the random number stored in advance in the random number pool may be transmitted to the transmitter 110. More specifically, about 1000 random numbers may be generated and stored in advance in the random number pool. When the random number is needed, the receiver 120 may bring 8 random numbers of 8 random numbers and transmit them to the transmitter 110. have.
이와 같이, 본 발명에서는, 수신부(120)가 난수 생성기를 이용해 미리 생성된 난수를 난수 풀에 저장하고, 난수값 전송 시 난수 풀에 미리 저장된 난수를 사용함으로써, 난수 생성기에 의한 난수 생성 예측을 통한 보안 위협을 방지할 수 있고, 신속하게 난수값을 전송하게 되어 송신부(110)의 수신 대기 시간을 최소화하고 전력 소모를 줄일 수 있다.As described above, in the present invention, the receiver 120 stores a random number generated in advance by using a random number generator in a random number pool, and uses random numbers prestored in the random number pool when random numbers are transmitted, thereby predicting random number generation by the random number generator. Security threats can be prevented, and the random number can be transmitted quickly, thereby minimizing reception waiting time of the transmitter 110 and reducing power consumption.
송신부(110)는, 제어 신호를 전송하고 수신부(120)로부터 난수값을 전송받기 위하여 수신 대기 상태에 있게 되는데, 미리 정해진 시간이 경과하면 난수값 수신에 실패한 것으로 보고 다시 제어 신호를 전송할 수 있다. 여기에서 미리 정해진 시간은 1㎳와 같이 매우 짧은 시간으로 함으로써, 신속한 원격 제어가 가능하도록 할 수 있다.The transmitter 110 is in a reception standby state to transmit a control signal and receive a random value from the receiver 120, and when a predetermined time elapses, the transmitter 110 may report that the random number has failed to be transmitted and transmit the control signal again. In this case, the predetermined time is set to a very short time such as 1 ms, so that quick remote control can be enabled.
송신부(110)가 수신 대기 상태 중에 수신부(120)로부터 난수값을 전송받으면, 난수값과 함께 수신부(120)로부터 수신한 맥 주소를 확인하고, 일치하면 공유된 대칭키를 이용해 암호문을 생성할 수 있다. 즉, 송신부(110)가 수신부(120)로부터 난수값을 수신할 때 수신부(120)의 맥 주소를 확인하며, 맥 주소 불일치 시에는 다시 수신 대기 상태로 돌아가게 된다.When the transmitter 110 receives a random value from the receiver 120 while waiting for reception, it checks the MAC address received from the receiver 120 together with the random number, and if it matches, generates a cipher text using a shared symmetric key. have. That is, when the transmitter 110 receives a random value from the receiver 120, the transmitter 110 checks the MAC address of the receiver 120, and when the MAC address mismatches, the transmitter 110 returns to the reception standby state.
예를 들어, 송신부(110)에서 수신 대기 상태에 대한 미리 정해진 시간이 1㎳인데, 0.5㎳ 경과 후 난수값을 수신하였으나 맥 주소가 일치하지 않으면 다시 수신 대기 상태로 돌아가게 된다. 맥 주소 확인에 0.2㎳가 소요된 경우, 수신 대기 상태로 0.3㎳를 더 대기하며, 0.3㎳ 동안에도 난수값이 수신되지 않으면 난수값 수신에 실패한 것으로 보고 다시 제어 신호를 전송할 수 있다.For example, although the predetermined time for the reception waiting state is 1 ms in the transmitter 110, when a random number is received after 0.5 ms has elapsed, the transmitter 110 returns to the reception standby state again. If it takes 0.2 ms to check the MAC address, it waits an additional 0.3 ms in a waiting state, and if a random value is not received even during 0.3 ms, it may be regarded as having failed to receive a random number and may transmit a control signal again.
그 다음, 송신부(110)는, 수신한 난수값을 공유된 대칭키를 이용해 암호화한 암호문을 수신부(120)에 전송할 수 있다. 송신부(110)는 다양한 대칭키 암호화 알고리즘을 이용할 수 있으며, 보다 구체적으로는 AES 암호화 알고리즘을 이용하여 난수값을 암호화할 수 있다.Next, the transmitter 110 may transmit the encrypted text encrypted with the received random number value using the shared symmetric key to the receiver 120. The transmitter 110 may use various symmetric key encryption algorithms, and more specifically, may encrypt random numbers using the AES encryption algorithm.
또한, 송신부(110)는, 수신부(120)로부터 수신한 난수값 및 송신 대상 데이터를 대칭키를 이용해 암호화하여 전송할 수 있다. 즉, 송신부(110)가 수신부(120)로 송신해야 할 데이터(즉, 송신 대상 데이터)가 있는 경우, 난수값과 함께 송신 대상 데이터를 암호화하여 수신부(120)에 전송할 수 있다. 이때, 송신 대상 데이터는 금융 정보 등의 사적 데이터를 포함할 수 있다.In addition, the transmitter 110 may encrypt and transmit the random number value and the transmission target data received from the receiver 120 using a symmetric key. That is, when there is data to be transmitted to the receiver 120 (that is, data to be transmitted) by the transmitter 110, the transmitter 110 may encrypt the data to be transmitted together with a random number and transmit the data to the receiver 120. In this case, the transmission target data may include private data such as financial information.
한편, 암호문을 전송한 송신부(110)는 즉시 종료하여 저전력을 유지할 수 있다.On the other hand, the transmission unit 110 that transmits the cipher text can be immediately terminated to maintain a low power.
수신부(120)는, 난수값 전송 후 수신 대기 중 수신한 정보가 제어 신호인지 암호문인지 판단하며, 판단 결과가 암호문인 경우 송신부(110)로부터 전송받은 암호문을 복호화하여 난수값이 일치하면, 수신한 제어 신호를 이용해 제어를 실행할 수 있다. 예를 들어, 제어 신호가 전등의 온 신호이면 점등 제어를 실행할 수 있다. 반면에, 판단 결과가 제어 신호이면, 수신부(120)는 맥 주소를 확인하는 과정부터 다시 실행할 수 있다. 이때, 수신부(120)는 제어 신호가 아닌 신호는 무조건 암호문으로 판단할 수 있다.Receiving unit 120 determines whether the information received during the reception after the transmission of the random number value is a control signal or a cipher text, and if the determination result is a cipher text, decrypts the cipher text received from the transmitter 110, if the random number value is matched, Control can be performed using control signals. For example, if the control signal is an ON signal of a lamp, the lighting control can be executed. On the other hand, if the determination result is a control signal, the receiver 120 may execute again from the process of confirming the MAC address. At this time, the receiver 120 may determine the signal that is not the control signal as an unconditional cipher text.
한편, 복호화 한 난수값이 일치하지 않으면, 제어 신호에 따른 원격 제어를 실행하지 않고 최초의 대기 상태로 돌아갈 수 있다. 또한, 수신부(120)는, 암호문을 수신할 때에도 맥 주소를 확인하며, 맥 주소가 일치하는 신호가 수신될 때까지 수신 대기를 할 수 있다.On the other hand, if the decrypted random number does not match, it is possible to return to the initial standby state without executing the remote control according to the control signal. In addition, the reception unit 120 may check the MAC address even when receiving the cipher text, and may wait to receive until a signal matching the MAC address is received.
도 3은 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법의 흐름을 도시한 도면이다. 도 3에 도시된 바와 같이, 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법은, 송신부(110)가 제어 신호를 전송하고 수신 대기하는 단계(S100), 수신부(120)가 제어 신호를 수신하고 맥 주소를 확인하여 난수값을 전송하는 단계(S200), 송신부(110)가 난수값을 수신하고 암호화하여 전송하는 단계(S300) 및 수신부(120)가 암호문을 복호화하여 난수값이 일치하면, 제어 신호를 이용해 제어를 실행하는 단계(S400)를 포함하여 구현될 수 있다.3 is a diagram illustrating a flow of a beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention. As shown in FIG. 3, a beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention may include: transmitting, by the transmitter 110, a control signal and waiting to be received. (S100), the receiving unit 120 receives the control signal and checks the MAC address and transmits a random number value (S200), the transmitting unit 110 receives and encrypts and transmits the random number value (S300) and the receiving unit ( When the decryption of the cipher text 120 coincides with the random number value, the control may be implemented by using the control signal (S400).
단계 S100에서는, 송신부(110)가, 제어 신호를 전송하고 수신 대기할 수 있다. 이때, 송신부(110)는, 제어 신호를 전송하고 수신 대기 상태에서 미리 정해진 시간이 경과하면, 다시 제어 신호를 전송할 수 있다.In step S100, the transmitter 110 may transmit a control signal and wait for reception. In this case, the transmitter 110 may transmit the control signal and transmit the control signal again when a predetermined time elapses in the reception standby state.
단계 S200에서는, 수신부(120)가, 송신부(110)로부터 제어 신호를 수신하고, 제어 신호와 함께 수신된 맥 주소를 확인하여 일치하면, 난수 풀에 미리 저장된 난수값을 송신부(110)에 전송할 수 있다. 단계 S200의 세부적인 흐름에 대해서는 추후 도 4를 참조하여 상세히 설명하도록 한다.In step S200, when the receiving unit 120 receives the control signal from the transmitting unit 110 and checks and matches the received MAC address with the control signal, the receiving unit 120 may transmit the random number stored in advance to the transmitting unit 110 to the transmitting unit 110. have. The detailed flow of step S200 will be described in detail later with reference to FIG. 4.
단계 S300에서는, 송신부(110)가, 수신부(120)로부터 난수값을 수신하며, 수신한 난수값을 송신부(110)와 수신부(120)가 상호 공유하는 대칭키를 이용해 암호화하고, 암호화 된 암호문을 수신부(120)에 전송할 수 있다. 단계 S300의 세부적인 흐름에 대해서는 추후 도 5를 참조하여 상세히 설명하도록 한다.In step S300, the transmitter 110 receives a random value from the receiver 120, encrypts the received random number using a symmetric key shared between the transmitter 110 and the receiver 120, and encrypts the encrypted cipher text. The receiver 120 may transmit the data. The detailed flow of step S300 will be described in detail later with reference to FIG. 5.
단계 S400에서는, 수신부(120)가, 송신부(110)로부터 전송받은 암호문을 복호화하여 난수값이 일치하면, 수신한 제어 신호를 이용해 제어를 실행할 수 있다. 즉, 단계 S400에서 수신부(120)는, 제어 신호를 제어 대상 장치의 제어부(미도시)에 전달하여, 제어 신호에 의한 원격 제어가 실행되도록 할 수 있다.In step S400, when the reception unit 120 decrypts the cipher text received from the transmission unit 110 and the random numbers match, the reception unit 120 may execute control using the received control signal. That is, in step S400, the receiver 120 may transmit a control signal to a controller (not shown) of the control target device so that remote control by the control signal is executed.
한편, 수신부(120)는, 단계 S200에서 난수값 전송 후 수신 대기 상태에 있게 되는데, 수신 대기 상태에서 수신부(120)가 수신한 정보가 제어 신호인지 암호문인지 판단하며, 판단 결과 제어 신호이면 단계 S400을 실행하지 않고 다시 단계 S200으로 돌아가서 맥 주소를 확인할 수 있다.On the other hand, the receiving unit 120 is in the reception waiting state after the transmission of the random number value in step S200, and determines whether the information received by the receiving unit 120 in the reception standby state is a control signal or a cipher text, and if the determination result control step S400 You can go back to step S200 to check your Mac address without running.
도 4는 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법에서, 단계 S200의 세부적인 흐름을 도시한 도면이다. 도 4에 도시된 바와 같이, 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법의 단계 S200은, 수신부(120)가, 송신부(110)로부터 제어 신호를 수신하는 단계(S210), 맥 주소의 일치 여부를 확인하는 단계(S220) 및 난수값을 송신부(110)에 전송하는 단계(S230)를 포함하여 구현될 수 있다.4 is a diagram illustrating a detailed flow of step S200 in the beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention. As shown in Figure 4, step S200 of the beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention, the receiver 120, from the transmitter 110 Receiving a control signal (S210), the step of checking whether the MAC address match (S220) and transmitting a random value to the transmitter 110 (S230) can be implemented.
단계 S210에서는, 수신부(120)가, 송신부(110)로부터 제어 신호를 수신할 수 있다. 또한, 단계 S210에서는, 제어 신호와 함께 송신부(110)의 맥 주소를 수신할 수 있다. 제어 신호의 수신은, 비콘을 기반으로 하는 근거리 무선통신 방식에 의할 수 있다.In step S210, the receiver 120 may receive a control signal from the transmitter 110. In operation S210, the MAC address of the transmitter 110 may be received together with the control signal. The reception of the control signal may be by a short range wireless communication method based on a beacon.
단계 S220에서는, 수신부(120)가, 맥 주소의 일치 여부를 확인할 수 있다. 즉, 단계 S210에서 제어 신호와 함께 수신한 맥 주소를 확인하여, 제어 대상 장치에 대한 제어 권한이 있는 비콘 장치의 맥 주소와 일치하면 다음 단계 S230로 진행하며, 일치하지 않으면 단계 S210 이전의 대기 상태로 돌아갈 수 있다.In step S220, the receiver 120 may check whether the MAC addresses match. That is, the MAC address received with the control signal in step S210 is checked, and if it matches with the MAC address of the beacon device having the control authority for the control target device, the process proceeds to the next step S230, and if it does not match, the standby state before the step S210 You can go back to
단계 S230에서는, 수신부(120)가, 난수값을 송신부(110)에 전송할 수 있다. 단계 S230에서는, 난수 생성기에서 생성된 난수값을 수신부(120)가 전송할 수 있으나, 난수 생성기를 이용해 생성되어 난수 풀에 미리 저장된 난수값을 수신부(120)가 가져 와서 송신부(110)에 전송할 수도 있다.In operation S230, the receiver 120 may transmit a random value to the transmitter 110. In operation S230, the reception unit 120 may transmit the random number generated by the random number generator. However, the reception unit 120 may import the random number generated by using the random number generator and pre-stored in the random number pool, and transmit the random number to the transmitter 110. .
도 5는 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법에서, 단계 S300의 세부적인 흐름을 도시한 도면이다. 도 5에 도시된 바와 같이, 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법의 단계 S300은, 송신부(110)가, 수신부(120)로부터 난수값을 수신하는 단계(S310), 맥 주소의 일치 여부를 확인하는 단계(S320) 및 난수값을 대칭키를 이용해 암호화하여 전송하는 단계(S330)를 포함하여 구현될 수 있다.5 is a diagram illustrating a detailed flow of step S300 in a beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention. As shown in Figure 5, step S300 of the beacon-based remote control method having a high level of security applicable in a low power environment according to an embodiment of the present invention, the transmitter 110, from the receiver 120 Receiving a random value (S310), a step of checking whether the MAC address match (S320) and the step of encrypting and transmitting the random number using a symmetric key (S330) can be implemented.
단계 S310에서는, 송신부(110)가, 수신부(120)로부터 난수값을 수신할 수 있다. 송신부(110)는, 단계 S100의 수신 대기 상태에서 단계 S310의 난수값을 수신할 수 있다. 단계 S310에서는, 송신부(110)가 난수값과 함께 수신부(120)의 맥 주소를 수신할 수 있다.In step S310, the transmitter 110 may receive a random value from the receiver 120. The transmitter 110 may receive the random number value of step S310 in the reception standby state of step S100. In operation S310, the transmitter 110 may receive the MAC address of the receiver 120 together with the random number.
단계 S320에서는, 송신부(110)가, 단계 S310에서 수신부(120)로부터 전송받은 맥 주소의 일치 여부를 확인할 수 있다. 즉, 단계 S220 및 단계 S320에서 송신부(110) 및 수신부(120)가 서로의 맥 주소를 확인함으로써, 정당한 장치에 의한 원격 제어가 이루어지도록 할 수 있다.In step S320, the transmitter 110 may check whether the MAC address received from the receiver 120 in step S310 matches. That is, in steps S220 and S320, the transmitter 110 and the receiver 120 may check each other's MAC address, thereby enabling remote control by a legitimate device.
한편, 단계 S320에서는, 송신부(110)가, 난수값과 함께 수신부(120)로부터 수신한 맥 주소를 확인하여 일치하면 다음 단계 S330을 실행하며, 일치하지 않으면 다시 단계 S110의 수신 대기 상태로 돌아갈 수 있다.On the other hand, in step S320, if the transmitter 110 checks the MAC address received from the receiver 120 together with the random number and matches, it executes the next step S330, and if it does not match, the transmitter 110 returns to the reception standby state of step S110 again. have.
단계 S330에서는, 송신부(110)가, 난수값을 대칭키를 이용해 암호화하여 전송할 수 있다. 즉, 단계 S330에서는, 송신부(110)와 수신부(120)가 공유하는 대칭키를 이용해 암호문을 생성할 수 있으며, 보다 구체적으로는, AES 암호화 알고리즘을 이용하여 난수값을 암호화할 수 있다.In step S330, the transmitter 110 may encrypt and transmit the random number using a symmetric key. That is, in step S330, the cipher text may be generated using a symmetric key shared by the transmitter 110 and the receiver 120. More specifically, the random number value may be encrypted using the AES encryption algorithm.
또한, 단계 S330에서는, 송신부(110)가, 송신 대상 데이터를 수신부(120)로부터 수신한 난수값과 함께 대칭키를 이용해 암호화하여 전송할 수 있다. 즉, 송신부(110)에서 수신부(120)로 전송할 데이터가 있는 경우, 이를 난수값과 함께 암호화하여 전송하기 때문에 보안을 강화할 수 있을 뿐 아니라, 송신 대상 데이터를 난수값과 함께 한 번의 통신으로 전송하므로 통신에 의한 전력 소모를 줄일 수 있고 경제적이다.In addition, in step S330, the transmitter 110 may encrypt and transmit the data to be transmitted using a symmetric key together with the random number value received from the receiver 120. In other words, if there is data to be transmitted from the transmitter 110 to the receiver 120, the data is encrypted and transmitted together with the random number, so that the security can be strengthened and the data to be transmitted is transmitted together with the random number in one communication. Power consumption by communication can be reduced and economical.
이상 살펴본 바와 같이, 본 발명의 일실시예에 따른 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템 및 방법은, 대칭키를 공유하는 송신부(110) 및 수신부(120)가, 난수값 및 대칭키 암호화 방식을 이용해 보안을 강화하고, 제어 신호 전송, 난수값 수신 및 암호문 전송으로 통신 횟수를 최소화함으로써, 전력 소모가 많은 통신 횟수를 줄여 저전력에서 사용이 가능하면서도 높은 수준의 보안 기술을 적용할 수 있다.As described above, the beacon-based remote control system and method having a high level of security applicable in a low power environment according to an embodiment of the present invention, the transmitter 110 and the receiver 120 sharing a symmetric key Security by using random number and symmetric key encryption method, and minimizing the number of communication by transmitting control signal, receiving random value and transmitting cipher text, reducing the number of communication with high power consumption Technology can be applied.
이상 설명한 본 발명은 본 발명이 속한 기술분야에서 통상의 지식을 가진 자에 의하여 다양한 변형이나 응용이 가능하며, 본 발명에 따른 기술적 사상의 범위는 아래의 특허청구범위에 의하여 정해져야 할 것이다.The present invention described above may be variously modified or applied by those skilled in the art, and the scope of the technical idea according to the present invention should be defined by the following claims.

Claims (7)

  1. 저전력이 요구되는 비콘 장치의 송신부(110) 및 제어 대상 장치의 수신부(120)를 이용해, 상기 제어 대상 장치가 상기 수신부(120)를 통해, 상기 저전력이 요구되는 비콘 장치로부터 제어 신호를 수신하여 제어 신호에 따른 동작을 수행함으로써 비콘 장치에 의한 원격 제어를 구현하며, 사물인터넷의 안전한 구현을 위해 적용되는 비콘 기반의 송신부(110)를 이용해 수신부(120)를 제어하는 원격 제어 시스템(100)으로서,The control target device receives and controls a control signal from the beacon device requiring low power through the receiver 120 using the transmitter 110 of the beacon device requiring low power and the receiver 120 of the control target device. As a remote control system 100 to implement the remote control by the beacon device by performing the operation according to the signal, and to control the receiver 120 using the beacon-based transmitter 110 applied for the secure implementation of the IoT,
    대칭키를 공유하는 송신부(110) 및 수신부(120)를 포함하되,Including a transmitter 110 and a receiver 120 sharing a symmetric key,
    상기 송신부(110)는, 제어 신호를 전송하고 수신 대기 중 상기 수신부(120)로부터 난수값을 수신하며, 수신한 난수값을 공유된 대칭키를 이용해 암호화한 암호문을 상기 수신부(120)에 전송하며,The transmitter 110 transmits a control signal and receives a random number value from the receiver 120 while waiting to receive the signal, and transmits the ciphertext encrypted using the shared symmetric key to the receiver 120. ,
    상기 수신부(120)는, 상기 송신부(110)로부터 상기 제어 신호를 수신하고, 상기 제어 신호와 함께 수신된 맥 주소를 확인하여 일치하면 생성된 난수값을 상기 송신부(110)에 전송하며, 상기 송신부(110)로부터 전송받은 암호문을 복호화하여 난수값이 일치하면, 상기 수신한 제어 신호를 이용해 제어를 실행하여,The receiver 120 receives the control signal from the transmitter 110, checks the received MAC address together with the control signal, and transmits the generated random number to the transmitter 110 when the matched signal is matched. If the random text value is decrypted by decrypting the cipher text received from 110, the control is executed using the received control signal.
    제어 신호 전송, 난수값 수신 및 암호문 전송으로 통신 횟수를 최소화함으로써, 전력 소모가 많은 통신 횟수를 줄여 저전력에서 적용이 가능하며,By minimizing the number of communication by transmitting control signal, receiving random number and transmitting cipher text, it is possible to apply at low power by reducing the number of communication with high power consumption.
    상기 송신부(110)는, 상기 수신부(120)로 송신해야 할 송신 대상 데이터가 있는 경우, 상기 수신부(120)로부터 수신한 난수값 및 송신 대상 데이터를 상기 대칭키를 이용해 암호화하여 전송하고,When there is transmission target data to be transmitted to the receiver 120, the transmitter 110 encrypts and transmits the random number value and the transmission target data received from the receiver 120 using the symmetric key,
    상기 암호문을 전송한 송신부(110)는, 즉시 종료하여 저전력을 유지하는 것을 특징으로 하는, 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100).Beacon-based remote control system having a high level of security applicable to a low-power environment, characterized in that the transmitting unit 110, which transmits the cipher text immediately terminates to maintain a low power.
  2. 제1항에 있어서, 상기 송신부(110)는,The method of claim 1, wherein the transmitter 110,
    상기 제어 신호를 전송하고 수신 대기 상태에서 미리 정해진 시간이 경과하면, 다시 제어 신호를 전송하는 것을 특징으로 하는, 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100).Beacon-based remote control system having a high level of security applicable to a low power environment, characterized in that for transmitting the control signal and a predetermined time elapses in the reception standby state.
  3. 제1항에 있어서, 상기 송신부(110)는,The method of claim 1, wherein the transmitter 110,
    상기 난수값과 함께 상기 수신부(120)로부터 수신한 맥 주소를 확인하여 일치하면, 상기 공유된 대칭키를 이용해 암호문을 생성하는 것을 특징으로 하는, 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100).Beacon having a high level of security that can be applied in a low power environment, characterized in that to generate a cipher text using the shared symmetric key if the matching and confirm the MAC address received from the receiving unit 120 with the random value Based remote control system (100).
  4. 제1항에 있어서, 상기 송신부(110)는,The method of claim 1, wherein the transmitter 110,
    AES 암호화 알고리즘을 이용하여 상기 난수값을 암호화하는 것을 특징으로 하는, 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100).A beacon-based remote control system (100) having a high level of security applicable in a low power environment, characterized by encrypting the random number using an AES encryption algorithm.
  5. 제1항에 있어서, 상기 수신부(120)는,The method of claim 1, wherein the receiver 120,
    난수 생성기를 이용해 미리 생성된 난수값을 난수 풀에 저장하며, 맥 주소가 일치하면 난수 풀에 미리 저장된 난수값을 가져 와서 상기 송신부(110)에 전송하는 것을 특징으로 하는, 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100).Using a random number generator to store the random number generated in advance in the random number pool, if the MAC address is matched to take the random number stored in the random number pool and transmit to the transmitter 110, high applicable in a low power environment Beacon based remote control system 100 with a level of security.
  6. 제1항에 있어서, 상기 수신부(120)는,The method of claim 1, wherein the receiver 120,
    상기 난수값 전송 후 수신 대기 중 수신한 정보가 제어 신호인지 암호문인지 판단하며, 판단 결과 제어 신호이면 다시 맥 주소를 확인하는 것을 특징으로 하는, 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 시스템(100).It is determined whether the received information received during the reception after the transmission of the random value is a control signal or a cipher text, and if the control signal is a result of the determination, the MAC address is checked again. Remote control system (100).
  7. 저전력이 요구되는 비콘 장치의 송신부(110) 및 제어 대상 장치의 수신부(120)를 이용해, 상기 제어 대상 장치가 상기 수신부(120)를 통해, 상기 저전력이 요구되는 비콘 장치로부터 제어 신호를 수신하여 제어 신호에 따른 동작을 수행함으로써 비콘 장치에 의한 원격 제어를 구현하며, 사물인터넷의 안전한 구현을 위해 적용되는 비콘 기반의 송신부(110)를 이용해 수신부(120)를 제어하는 원격 제어 방법으로서,The control target device receives and controls a control signal from the beacon device requiring low power through the receiver 120 using the transmitter 110 of the beacon device requiring low power and the receiver 120 of the control target device. As a remote control method for implementing the remote control by the beacon device by performing the operation according to the signal, and controlling the receiver 120 using the beacon-based transmitter 110 applied for the secure implementation of the IoT,
    (1) 상기 송신부(110)가, 제어 신호를 전송하고 수신 대기하는 단계;(1) the transmitting unit 110, transmitting and waiting to receive a control signal;
    (2) 상기 수신부(120)가, 상기 송신부(110)로부터 상기 제어 신호를 수신하고, 상기 제어 신호와 함께 수신된 맥 주소를 확인하여 일치하면, 난수 풀에 미리 저장된 난수값을 상기 송신부(110)에 전송하는 단계;(2) If the receiving unit 120 receives the control signal from the transmitting unit 110 and checks and matches the received MAC address with the control signal, the transmitting unit 110 stores a random number previously stored in the random number pool. Sending to;
    (3) 상기 송신부(110)가, 상기 수신부(120)로부터 난수값을 수신하며, 수신한 난수값을 상기 송신부(110)와 수신부(120)가 공유하는 대칭키를 이용해 암호화하고, 암호화 된 암호문을 상기 수신부(120)에 전송하는 단계; 및(3) The transmitter 110 receives a random number value from the receiver 120, encrypts the received random number using a symmetric key shared by the transmitter 110 and the receiver 120, and encrypts the encrypted text. Transmitting to the receiving unit (120); And
    (4) 상기 수신부(120)가, 상기 송신부(110)로부터 전송받은 암호문을 복호화하여 난수값이 일치하면, 상기 수신한 제어 신호를 이용해 제어를 실행하는 단계를 포함하여,(4) if the reception unit 120 decrypts the cipher text received from the transmission unit 110 and performs a control using the received control signal when the random number values match,
    제어 신호 전송, 난수값 수신 및 암호문 전송으로 통신 횟수를 최소화함으로써, 전력 소모가 많은 통신 횟수를 줄여 저전력에서 적용이 가능하며,By minimizing the number of communication by transmitting control signal, receiving random number and transmitting cipher text, it is possible to apply at low power by reducing the number of communication with high power consumption.
    상기 단계 (3)에서, 상기 송신부(110)는,In the step (3), the transmitter 110,
    상기 수신부(120)로 송신해야 할 송신 대상 데이터가 있는 경우, 상기 수신부(120)로부터 수신한 난수값 및 송신 대상 데이터를 상기 대칭키를 이용해 암호화하여 전송하고,If there is transmission target data to be transmitted to the receiver 120, the random number value and the transmission target data received from the receiver 120 are encrypted and transmitted using the symmetric key,
    상기 단계 (3)에서 암호문을 전송한 송신부(110)는, 즉시 종료하여 저전력을 유지하는 것을 특징으로 하는, 저전력 환경에서 적용 가능한 높은 수준의 보안성을 갖는 비콘 기반의 원격 제어 방법.Beacon-based remote control method having a high level of security applicable to a low-power environment, characterized in that the transmitting unit 110, which transmits the cipher text in the step (3) to immediately terminate and maintain a low power.
PCT/KR2019/001710 2018-02-14 2019-02-12 Low power environment-applicable beacon-based remote control system and method having high level security WO2019160304A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR10-2018-0018801 2018-02-14
KR1020180018801A KR101909149B1 (en) 2018-02-14 2018-02-14 Beacon-based remote control system and method with high level security in low power environment

Publications (1)

Publication Number Publication Date
WO2019160304A1 true WO2019160304A1 (en) 2019-08-22

Family

ID=64099557

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2019/001710 WO2019160304A1 (en) 2018-02-14 2019-02-12 Low power environment-applicable beacon-based remote control system and method having high level security

Country Status (2)

Country Link
KR (1) KR101909149B1 (en)
WO (1) WO2019160304A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112487408A (en) * 2020-12-24 2021-03-12 潍柴动力股份有限公司 Safe access method and system for ECU in vehicle and storage medium

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR102508448B1 (en) * 2020-12-28 2023-03-08 연세대학교 산학협력단 IoT SERVICE PROVIDING METHOD BASED ON ADAPTIVE ENCRYPTION AND IoT APPARATUS
KR102299402B1 (en) * 2021-02-03 2021-09-07 (주)아이지코 Terminal control system using beacon data and method for controling the user terminal
KR102561784B1 (en) * 2022-08-30 2023-08-01 주식회사 마크애니 Terminal control system using beacon data and method for controling the user terminal

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20030037145A (en) * 2001-11-02 2003-05-12 한국전자통신연구원 the method and the system for passward based key change
KR20090031154A (en) * 2007-09-21 2009-03-25 주식회사 케이티 System and method for providing digital movie service using internet
KR20090042412A (en) * 2007-10-26 2009-04-30 인하대학교 산학협력단 Method of password-based authentication and key exchanging
KR20110011781A (en) * 2009-07-29 2011-02-09 신용진 Security usb memory using mac address and security method using thereof

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20030037145A (en) * 2001-11-02 2003-05-12 한국전자통신연구원 the method and the system for passward based key change
KR20090031154A (en) * 2007-09-21 2009-03-25 주식회사 케이티 System and method for providing digital movie service using internet
KR20090042412A (en) * 2007-10-26 2009-04-30 인하대학교 산학협력단 Method of password-based authentication and key exchanging
KR20110011781A (en) * 2009-07-29 2011-02-09 신용진 Security usb memory using mac address and security method using thereof

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
MENEZES, A. ET AL.: "Identification and Entity Authentication", HANDBOOK OF APPLIED CRYPTOGRAPHY, 1997, pages 385 - 424 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112487408A (en) * 2020-12-24 2021-03-12 潍柴动力股份有限公司 Safe access method and system for ECU in vehicle and storage medium
CN112487408B (en) * 2020-12-24 2022-08-23 潍柴动力股份有限公司 Safe access method and system for in-vehicle ECU and storage medium

Also Published As

Publication number Publication date
KR101909149B1 (en) 2018-10-17

Similar Documents

Publication Publication Date Title
WO2019160304A1 (en) Low power environment-applicable beacon-based remote control system and method having high level security
WO2015126124A1 (en) Method and device for transmitting and receiving authentication information in wireless communication system
WO2018151390A1 (en) Internet of things device
WO2014200240A1 (en) Method and apparatus for registering wireless device in wireless communication system
WO2016137304A1 (en) Trust-zone-based end-to-end security
WO2015041500A1 (en) Security management method and security management device in home network system
WO2010126342A2 (en) Method and system for managing a body area network using a coordinator device
WO2014098450A1 (en) Electronic device, personal cloud apparatus, personal cloud system and method for registering personal cloud apparatus in user portal server thereof
WO2015072788A1 (en) Method and apparatus for managing security key in a near fieldd2d communication system
WO2023120906A1 (en) Method for receiving firmware and method for transmitting firmware
WO2011152687A2 (en) Method for allowing one device to detect another device
WO2012093900A2 (en) Method and device for authenticating personal network entity
WO2014189262A1 (en) User terminal authentication method of access point apparatus
WO2017200291A1 (en) Method and apparatus for payment using beacon
WO2019143212A1 (en) Electronic apparatus, terminal apparatus and method of controlling the same
WO2017111483A1 (en) Biometric data-based authentication device, control server and application server linked to same, and method for operating same
WO2019182377A1 (en) Method, electronic device, and computer-readable recording medium for generating address information used for transaction of blockchain-based cryptocurrency
WO2019039795A1 (en) Air-conditioner repeater, air-conditioner system and a control method thereof
WO2016126023A1 (en) Broadcast apparatus and method of authenticating broadcast data
WO2013089427A1 (en) Method and device for executing a device management command based on an execution time
WO2020004805A1 (en) Apparatus and method for performing data communication in nan protocol-based network environment
WO2016159496A1 (en) Method for distributing application having security function added thereto, and operation method of same application
WO2022245109A1 (en) Method and device for performing uwb secure ranging
WO2022035161A1 (en) Computer network hacking prevention system and method
WO2015053602A1 (en) Method and system for supporting security and information for proximity based service in mobile communication system environment

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19755194

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 19755194

Country of ref document: EP

Kind code of ref document: A1