[go: up one dir, main page]

CN104717225B - A kind of things-internet gateway access authentication method and system - Google Patents

A kind of things-internet gateway access authentication method and system Download PDF

Info

Publication number
CN104717225B
CN104717225B CN201510145998.9A CN201510145998A CN104717225B CN 104717225 B CN104717225 B CN 104717225B CN 201510145998 A CN201510145998 A CN 201510145998A CN 104717225 B CN104717225 B CN 104717225B
Authority
CN
China
Prior art keywords
access
internet
things
iot
wireless channel
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201510145998.9A
Other languages
Chinese (zh)
Other versions
CN104717225A (en
Inventor
毛峻岭
盛明哲
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN201510145998.9A priority Critical patent/CN104717225B/en
Publication of CN104717225A publication Critical patent/CN104717225A/en
Application granted granted Critical
Publication of CN104717225B publication Critical patent/CN104717225B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Computer And Data Communications (AREA)

Abstract

本发明提供了一种物联网网关接入认证方法及系统;方法包括:S110、物联网设备开机后根据自身的无线接入方式扫描相应接入方式的无线信道,选择满足预定条件的无线信道,根据预定规则生成物联网专用接入密码接入所选择的无线信道,连接物联网网关,上传设备描述信息;S120、所述物联网网关监测到有物联网设备连接后,阻塞该物联网设备向其他设备或网络的通信,根据该物联网设备上传的设备描述信息进行认证,如认证成功则允许该物联网设备接入,并开放该物联网设备和其他设备或网络的数据通信。本发明能够便于物联网设备实现即插即用的接入认证。

The present invention provides an Internet of Things gateway access authentication method and system; the method includes: S110, after the Internet of Things device is turned on, scans the wireless channel of the corresponding access mode according to its own wireless access mode, and selects a wireless channel that meets predetermined conditions, According to predetermined rules, generate a dedicated access password for the Internet of Things to access the selected wireless channel, connect to the Internet of Things gateway, and upload device description information; S120. After the Internet of Things gateway detects that an Internet of Things device is connected, block the Internet of Things device from sending The communication of other devices or networks is authenticated according to the device description information uploaded by the IoT device. If the authentication is successful, the IoT device is allowed to access, and the data communication between the IoT device and other devices or networks is opened. The invention can facilitate the realization of plug-and-play access authentication of the Internet of things equipment.

Description

一种物联网网关接入认证方法及系统A method and system for access authentication of an internet of things gateway

技术领域technical field

本发明涉及物联网领域,具体涉及一种物联网网关接入认证方法及系统。The invention relates to the field of the Internet of Things, in particular to a method and system for access authentication of an Internet of Things gateway.

背景技术Background technique

随着物联网的快速发展,未来用户家庭可能会出现大量的物联网设备。为了提升用户体验,这些物联网设备一方面需要很方便地接入到物联网网关中实现即插即用,另一方面物联网网关又要保证物联网设备接入的安全性防止非法设备的接入,因此要对物联网设备进行接入认证。With the rapid development of the Internet of Things, there may be a large number of Internet of Things devices in users' homes in the future. In order to improve the user experience, on the one hand, these IoT devices need to be easily connected to the IoT gateway to achieve plug-and-play; Therefore, it is necessary to perform access authentication for IoT devices.

目前在物联网设备即插即用方面的研究相对比较薄弱,物联网设备的即插即用主要是基于类似UPnP(通用即插即用)协议的框架实现;物联网设备开机后,通过用户配置接入物联网网关提供的无线信道,然后通过对物联网网关进行服务发现以及服务请求与响应的流程实现该物联网设备的接入认证和发现。服务发现主要是物联网设备监听物联网网关的服务广播消息,同时物联网设备也可以主动向周边广播自身的服务广播信息;服务请求与响应主要是物联网设备向网关进行服务请求,服务请求中会携带自身的设备信息,网关对设备进行认证并对服务请求进行响应,为物联网设备提供网关服务。At present, the research on plug-and-play of IoT devices is relatively weak. The plug-and-play of IoT devices is mainly based on a framework similar to UPnP (Universal Plug and Play) protocol; Access to the wireless channel provided by the IoT gateway, and then realize the access authentication and discovery of the IoT device through the process of service discovery and service request and response to the IoT gateway. Service discovery is mainly that the IoT device monitors the service broadcast message of the IoT gateway, and at the same time, the IoT device can also actively broadcast its own service broadcast information to the surrounding; the service request and response is mainly that the IoT device makes a service request to the gateway, and the service request It will carry its own device information, and the gateway will authenticate the device and respond to the service request, providing gateway services for IoT devices.

基于类似UPnP框架的即插即用技术实现物联网设备的接入的主要存在两类问题:1)接入前需用户预先为物联网设备配置无线信道,手动设置无线接入的鉴权信息才能通过无线接入鉴权接入物联网网关提供的无线信道,对用户来说存在使用门槛;但如果不设置鉴权信息,则会降低安全性;2)UPnP协议作为一种对等结构协议,其协议及伴随的认证过程对于计算和存储能力较弱的传感器类物联网设备来说其过于复杂。There are two main types of problems in realizing the access of IoT devices based on the plug-and-play technology similar to the UPnP framework: 1) Before accessing, the user needs to configure the wireless channel for the IoT device in advance, and manually set the authentication information for wireless access. There is a threshold for users to access the wireless channel provided by the IoT gateway through wireless access authentication; but if the authentication information is not set, the security will be reduced; 2) UPnP protocol is a peer-to-peer structure protocol, Its protocol and accompanying authentication process are too complex for sensor-type IoT devices with weak computing and storage capabilities.

发明内容Contents of the invention

本发明要解决的技术问题是如何便于物联网设备实现即插即用的接入认证。The technical problem to be solved by the present invention is how to facilitate the realization of plug-and-play access authentication for Internet of Things devices.

为了解决上述问题,本发明提供了一种物联网网关接入认证方法,包括:In order to solve the above problems, the present invention provides a method for access authentication of an Internet of Things gateway, including:

S110、物联网设备开机后根据自身的无线接入方式扫描相应接入方式的无线信道,选择满足预定条件的无线信道,根据预定规则生成物联网专用接入密码接入所选择的无线信道,连接物联网网关,上传设备描述信息;S110. After the Internet of Things device is turned on, scan the wireless channel of the corresponding access method according to its own wireless access method, select a wireless channel that meets the predetermined conditions, generate an Internet of Things special access password according to the predetermined rule to access the selected wireless channel, and connect IoT gateway, upload device description information;

S120、所述物联网网关监测到有物联网设备连接后,阻塞该物联网设备向其他设备或网络的通信,根据该物联网设备上传的设备描述信息进行认证,如认证成功则允许该物联网设备接入,并开放该物联网设备和其他设备或网络的数据通信。S120. After the IoT gateway detects that an IoT device is connected, it blocks the communication of the IoT device to other devices or networks, performs authentication according to the device description information uploaded by the IoT device, and allows the IoT device if the authentication is successful. Device access, and open data communication between the IoT device and other devices or networks.

可选地,所述步骤S110前还包括:Optionally, before the step S110, it also includes:

所述物联网网关配置所支持的无线接入方式下的无线信道,使用预定格式的物联网专用无线接入标识作为所述无线信道的标识,并按照预定规则生成物联网专用接入密码为所述无线信道的接入密码。The Internet of Things gateway configures the wireless channel under the supported wireless access mode, uses the Internet of Things special wireless access identification in a predetermined format as the identification of the wireless channel, and generates the Internet of Things special access password according to predetermined rules. Access password of the wireless channel mentioned above.

可选地,所述预定条件包括:Optionally, the predetermined conditions include:

无线信道的标识的格式符合预定格式;The format of the identification of the wireless channel conforms to a predetermined format;

或者无线信道的标识和预存的标识相同;Or the identification of the wireless channel is the same as the pre-stored identification;

所述根据预定规则生成物联网专用接入密码的步骤包括以下任一方式:The step of generating a dedicated access password for the Internet of Things according to predetermined rules includes any of the following methods:

以所述无线信道的标识的格式对应的预置密码作为所述物联网专用接入密码;Using the preset password corresponding to the format of the identification of the wireless channel as the dedicated access password for the Internet of Things;

以所选择的无线信道的标识中预定的一个或多个位置上的字符作为所述物联网专用接入密码;Using characters at one or more predetermined positions in the selected wireless channel identifier as the IoT-specific access password;

以预定方式对所选择的无线信道的标识进行处理,将处理结果作为所述物联网专用接入密码。The identification of the selected wireless channel is processed in a predetermined manner, and the processing result is used as the special access password for the Internet of Things.

可选地,所述步骤S120后还包括:Optionally, after the step S120, it also includes:

如果认证不成功,则所述物联网网关将根据所述设备描述信息生成的设备描述推送到与该物联网网关绑定的用户终端的物联网网关应用上;If the authentication is unsuccessful, the IoT gateway pushes the device description generated according to the device description information to the IoT gateway application of the user terminal bound to the IoT gateway;

所述物联网网关接收所述物联网网关应用根据用户操作所返回的设置信息;如果所述设置信息指示允许所述物联网设备接入,则将该物联网设备的设备描述添加到本地设备库中,并开放该物联网设备和其他设备或网络的数据通信;如果所述设置信息指示不允许所述物联网设备接入,则关闭该物联网设备的连接。The IoT gateway receives the setting information returned by the IoT gateway application according to the user operation; if the setting information indicates that the IoT device is allowed to access, then add the device description of the IoT device to the local device library and open the data communication between the IoT device and other devices or networks; if the setting information indicates that the IoT device is not allowed to access, close the connection of the IoT device.

可选地,所述设置信息中还包括访问权限;所述访问权限包括其他设备或网络访问该物联网设备的权限,和/或该物联网设备访问其他设备或网络的权限;Optionally, the setting information also includes access permissions; the access permissions include permissions for other devices or networks to access the IoT device, and/or permissions for the IoT device to access other devices or networks;

所述开放该物联网设备和其他设备或网络的数据通信的步骤包括:The steps of opening the data communication between the IoT device and other devices or networks include:

根据所述设置信息中的所述访问权限开放该物联网设备和其他设备或网络的数据通信。Open the data communication between the IoT device and other devices or networks according to the access authority in the setting information.

本发明还提供了一种物联网网关接入认证系统,包括:The present invention also provides an Internet of Things gateway access authentication system, comprising:

接入模块,设置于物联网设备中,用于在物联网设备开机后根据自身的无线接入方式扫描相应接入方式的无线信道,选择满足预定条件的无线信道,根据预定规则生成物联网专用接入密码接入所选择的无线信道,连接物联网网关,上传设备描述信息;The access module is set in the IoT device, and is used to scan the wireless channel of the corresponding access mode according to its own wireless access mode after the IoT device is turned on, select the wireless channel that meets the predetermined conditions, and generate the dedicated network of the Internet of Things according to the predetermined rules. Access the password to access the selected wireless channel, connect to the IoT gateway, and upload device description information;

认证模块,设置于所述物联网网关中,用于监测到有物联网设备连接所述物联网网关后,阻塞该物联网设备向其他设备或网络的通信,根据该物联网设备上传的设备描述信息进行认证,如认证成功则允许该物联网设备接入,并开放该物联网设备和其他设备或网络的数据通信。The authentication module is set in the Internet of Things gateway, and is used to block the communication of the Internet of Things device to other devices or networks after detecting that an Internet of Things device is connected to the Internet of Things gateway. According to the device description uploaded by the Internet of Things device If the authentication is successful, the IoT device is allowed to access, and the data communication between the IoT device and other devices or networks is opened.

可选地,所述的系统还包括:Optionally, the system also includes:

配置模块,设置于所述物联网网关中,用于配置所支持的无线接入方式下的无线信道,使用预定格式的物联网专用无线接入标识作为所述无线信道的标识,并按照预定规则生成物联网专用接入密码为所述无线信道的接入密码。The configuration module is set in the Internet of Things gateway, and is used to configure the wireless channel under the supported wireless access mode, use the Internet of Things special wireless access identification in a predetermined format as the identification of the wireless channel, and follow the predetermined rules Generate the Internet of Things special access password as the access password of the wireless channel.

可选地,所述预定条件包括:Optionally, the predetermined conditions include:

无线信道的标识的格式符合预定格式;The format of the identification of the wireless channel conforms to a predetermined format;

或者无线信道的标识和预存的标识相同;Or the identification of the wireless channel is the same as the pre-stored identification;

所述接入模块根据预定规则生成物联网专用接入密码是指以下任一方式:The access module generating the Internet of Things-specific access password according to predetermined rules refers to any of the following methods:

所述接入模块以所述无线信道的标识的格式对应的预置密码作为所述物联网专用接入密码;:The access module uses the preset password corresponding to the format of the identification of the wireless channel as the dedicated access password for the Internet of Things;:

所述接入模块以所选择的无线信道的标识中预定的一个或多个位置上的字符作为所述物联网专用接入密码;The access module uses characters at one or more predetermined positions in the selected wireless channel identifier as the IoT-specific access password;

所述接入模块以预定方式对所选择的无线信道的标识进行处理,将处理结果作为所述物联网专用接入密码。The access module processes the identifier of the selected wireless channel in a predetermined manner, and uses the processing result as the IoT-specific access password.

可选地,所述的系统还包括:Optionally, the system also includes:

控制模块,用于当认证不成功时,将根据所述设备描述信息生成的设备描述推送到与该物联网网关绑定的用户终端的物联网网关应用上;接收所述物联网网关应用根据用户操作所返回的设置信息;如果所述设置信息指示允许所述物联网设备接入,则将该物联网设备的设备描述添加到本地设备库中,并开放该物联网设备和其他设备或网络的数据通信;如果所述设置信息指示不允许所述物联网设备接入,则关闭该物联网设备的连接。The control module is used to push the device description generated according to the device description information to the Internet of Things gateway application of the user terminal bound to the Internet of Things gateway when the authentication is unsuccessful; Operate the returned setting information; if the setting information indicates that the IoT device is allowed to access, add the device description of the IoT device to the local device library, and open the connection between the IoT device and other devices or networks Data communication; if the setting information indicates that the Internet of Things device is not allowed to access, then close the connection of the Internet of Things device.

可选地,所述设置信息中还包括访问权限;所述访问权限包括其他设备或网络访问该物联网设备的权限,和/或该物联网设备访问其他设备或网络的权限;Optionally, the setting information also includes access permissions; the access permissions include permissions for other devices or networks to access the IoT device, and/or permissions for the IoT device to access other devices or networks;

所述控制模块开放该物联网设备和其他设备或网络的数据通信是指:The control module opening the data communication between the IoT device and other devices or networks refers to:

所述控制模块根据所述设置信息中的所述访问权限开放该物联网设备和其他设备或网络的数据通信。The control module enables data communication between the IoT device and other devices or networks according to the access authority in the setting information.

本发明的方案可以方便实现物联网设备即插即用的接入认证。该方案中一方面使用专用的物联网无线接入标识方便物联网设备自动进行无线接入,无需用户参与;另一方面物联网网关在专门的信道端口上侦听物联网设备上传的设备描述信息,将侦听的设备描述信息提取后推送到用户终端上的网关应用由用户确认实现设备的接入鉴权,并由物联网网关对认证过的物联网设备根据其设备信息进行注册和管理,使得物联网设备只需要存储设备描述信息,而大部分类UPnP协议的管理可以由物联网网关代理。The solution of the present invention can conveniently realize the plug-and-play access authentication of the IoT device. In this solution, on the one hand, a dedicated IoT wireless access identifier is used to facilitate automatic wireless access of IoT devices without user participation; on the other hand, the IoT gateway listens to the device description information uploaded by IoT devices on a dedicated channel port After extracting the intercepted device description information and pushing it to the gateway application on the user terminal, the user confirms the access authentication of the device, and the IoT gateway registers and manages the authenticated IoT device according to its device information. The IoT device only needs to store device description information, and the management of most UPnP-like protocols can be proxied by the IoT gateway.

附图说明Description of drawings

图1为实施例一的物联网网关接入认证方法的流程示意图;FIG. 1 is a schematic flow diagram of an Internet of Things gateway access authentication method in Embodiment 1;

图2为实施例一的例子中的流程示意图。FIG. 2 is a schematic flow chart of an example of Embodiment 1.

具体实施方式Detailed ways

下面将结合附图及实施例对本发明的技术方案进行更详细的说明。The technical solution of the present invention will be described in more detail below with reference to the drawings and embodiments.

需要说明的是,如果不冲突,本发明实施例以及实施例中的各个特征可以相互结合,均在本发明的保护范围之内。另外,虽然在流程图中示出了逻辑顺序,但是在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤。It should be noted that, if there is no conflict, the embodiments of the present invention and various features in the embodiments can be combined with each other, and all are within the protection scope of the present invention. In addition, although a logical order is shown in the flowcharts, in some cases the steps shown or described may be performed in an order different from that shown or described herein.

实施例一、一种物联网网关接入认证方法,如图1所示,包括:Embodiment 1. An Internet of Things gateway access authentication method, as shown in FIG. 1 , includes:

S110、物联网设备开机后根据自身的无线接入方式扫描相应接入方式的无线信道,选择满足预定条件的无线信道,根据预定规则生成物联网专用接入密码接入所选择的无线信道,连接物联网网关,上传设备描述信息;S110. After the Internet of Things device is turned on, scan the wireless channel of the corresponding access method according to its own wireless access method, select a wireless channel that meets the predetermined conditions, generate an Internet of Things special access password according to the predetermined rule to access the selected wireless channel, and connect IoT gateway, upload device description information;

S120、所述物联网网关监测到有物联网设备连接后,阻塞该物联网设备向其他设备或网络的通信,根据该物联网设备上传的设备描述信息进行认证,如认证成功则允许该物联网设备接入,并开放该物联网设备和其他设备或网络的数据通信。S120. After the IoT gateway detects that an IoT device is connected, it blocks the communication of the IoT device to other devices or networks, performs authentication according to the device description information uploaded by the IoT device, and allows the IoT device if the authentication is successful. Device access, and open data communication between the IoT device and other devices or networks.

本实施例可以在保留物联网网关接入鉴权的前提下,让物联网设备自动接入物联网网关,避免了用户的操作;特别是对于一些没有输入设备(如键盘)、输出设备(如屏幕)的物联网设备来说尤其方便。This embodiment can allow the Internet of Things device to automatically access the Internet of Things gateway under the premise of retaining the Internet of Things gateway access authentication, avoiding the user's operation; especially for some without input devices (such as keyboards), output devices (such as It is especially convenient for IoT devices with screens).

本实施例的一种实施方式中,所述预定条件包括:In an implementation manner of this embodiment, the predetermined conditions include:

无线信道的标识的格式符合预定格式;The format of the identification of the wireless channel conforms to a predetermined format;

或者无线信道的标识和预存的标识相同;Or the identification of the wireless channel is the same as the pre-stored identification;

所述根据预定规则生成物联网专用接入密码的步骤包括以下任一方式:The step of generating a dedicated access password for the Internet of Things according to predetermined rules includes any of the following methods:

以所述无线信道的标识的格式对应的预置密码作为所述物联网专用接入密码;即:根据标识格式采用预置的固定密码;The preset password corresponding to the format of the identification of the wireless channel is used as the dedicated access password for the Internet of Things; that is, a preset fixed password is used according to the identification format;

以所选择的无线信道的标识中预定的一个或多个位置上的字符作为所述物联网专用接入密码;比如将标识的最后6位作为物联网专用接入密码;Use the characters at one or more predetermined positions in the identification of the selected wireless channel as the Internet of Things-specific access password; for example, use the last 6 digits of the identification as the Internet of Things-specific access password;

以预定方式对所选择的无线信道的标识进行处理,将处理结果作为所述物联网专用接入密码;比如将标识中的各字符转换为二进制数,以转换结果作为物联网专用接入密码。The identification of the selected wireless channel is processed in a predetermined manner, and the processing result is used as the special access password for the Internet of Things; for example, each character in the identification is converted into a binary number, and the conversion result is used as the special access password for the Internet of Things.

当然,也可以将所述物联网专用接入密码预存在物联网设备中。Certainly, the IoT-specific access password may also be pre-stored in the IoT device.

当存在多个满足预定条件的无线网络时,可选择其中信号最强的一个。When there are multiple wireless networks satisfying the predetermined condition, the one with the strongest signal may be selected.

本实施例的一种实施方式中,所述步骤S110前还可以包括:In an implementation manner of this embodiment, before the step S110, it may further include:

所述物联网网关配置所支持的无线接入方式下的无线信道,使用预定格式的物联网专用无线接入标识作为所述无线信道的标识,并按照预定规则生成物联网专用接入密码为所述无线信道的接入密码。The Internet of Things gateway configures the wireless channel under the supported wireless access mode, uses the Internet of Things special wireless access identification in a predetermined format as the identification of the wireless channel, and generates the Internet of Things special access password according to predetermined rules. Access password of the wireless channel mentioned above.

物联网网关生成物联网专用接入密码的预定规则和所述物联网设备使用的预定规则相同。The predetermined rule for generating the Internet of Things-specific access password by the Internet of Things gateway is the same as the predetermined rule used by the Internet of Things device.

上述无线信道可以设置为专供物联网设备使用,后文也称为物联网专用无线信道。The wireless channel above can be set to be exclusively used by IoT devices, which is also referred to as a dedicated wireless channel for IoT hereinafter.

本实施例的一种实施方式中,所述根据该物联网设备上传的设备描述信息进行认证的步骤包括:In an implementation manner of this embodiment, the step of authenticating according to the device description information uploaded by the IoT device includes:

根据该物联网设备上传的设备描述信息解析出设备描述;所述设备描述包括所述物联网设备的生产厂家、设备名称和设备类型;Analyzing the device description according to the device description information uploaded by the IoT device; the device description includes the manufacturer, device name and device type of the IoT device;

将所述设备描述与本地设备库中的设备描述进行匹配,如果能匹配成功,则该物联网设备认证成功。Match the device description with the device description in the local device library. If the match is successful, the IoT device authentication is successful.

本实施方式中,所述步骤S120后还可以包括:In this embodiment, after the step S120, it may further include:

如果认证不成功,则所述物联网网关将根据所述设备描述信息生成的设备描述推送到与该物联网网关绑定的用户终端的物联网网关应用上;If the authentication is unsuccessful, the IoT gateway pushes the device description generated according to the device description information to the IoT gateway application of the user terminal bound to the IoT gateway;

所述物联网网关接收所述物联网网关应用根据用户操作所返回的设置信息;如果所述设置信息指示允许所述物联网设备接入,则将该物联网设备的设备描述添加到本地设备库中,并开放该物联网设备和其他设备或网络的数据通信;如果所述设置信息指示不允许所述物联网设备接入,则关闭该物联网设备的连接。The IoT gateway receives the setting information returned by the IoT gateway application according to the user operation; if the setting information indicates that the IoT device is allowed to access, then add the device description of the IoT device to the local device library and open the data communication between the IoT device and other devices or networks; if the setting information indicates that the IoT device is not allowed to access, close the connection of the IoT device.

本实施方式中,所述设置信息中还可以包括访问权限;所述访问权限包括其他设备或网络访问该物联网设备的权限,和/或该物联网设备访问其他设备或网络的权限;In this embodiment, the setting information may also include access permissions; the access permissions include permissions for other devices or networks to access the IoT device, and/or permissions for the IoT device to access other devices or networks;

所述开放该物联网设备和其他设备或网络的数据通信的步骤包括:The steps of opening the data communication between the IoT device and other devices or networks include:

根据所述设置信息中的所述访问权限开放该物联网设备和其他设备或网络的数据通信。Open the data communication between the IoT device and other devices or networks according to the access authority in the setting information.

下面给出一个物联网网关接入认证的具体示例,如图2所示,过程包括步骤201~208:A specific example of IoT gateway access authentication is given below, as shown in Figure 2, the process includes steps 201-208:

201、物联网网关根据其自身支持的无线接入方式,配置所支持的无线接入方式下的物联网专用无线信道,使用相应无线接入方式对应的物联网专用无线接入标识作为所述物联网专用无线信道的标识,并使用对应的物联网专用接入密码为所述物联网专用无线信道的接入密码。201. The Internet of Things gateway configures the Internet of Things dedicated wireless channel under the supported wireless access method according to the wireless access method it supports, and uses the Internet of Things dedicated wireless access identifier corresponding to the corresponding wireless access method as the IoT The identification of the dedicated wireless channel for networking, and use the corresponding dedicated access password for the Internet of Things as the access password for the dedicated wireless channel for the Internet of Things.

所述物联网专用无线接入标识的格式和物联网专用接入密码的生成规则都可以是预定的,不同无线接入方式对应的标识格式、密码生成规则可互不相同,也可以相同。Both the format of the Internet of Things-specific wireless access identifier and the generation rule of the Internet-of-things-specific access password can be predetermined, and the identifier formats and password generation rules corresponding to different wireless access modes can be different from each other or the same.

然后物联网网关就可以等待物联网设备连接。The IoT gateway can then wait for the IoT device to connect.

202、物联网设备开机后,根据自身的无线接入方式,主动扫描相应的信号强度最高的具有物联网专用无线接入标识的无线信道(即所述物联网专用无线信道),并使用相应无线接入方式的物联网专用接入密码接入该无线信道,接入后所述物联网设备即连接物联网网关。202. After the Internet of Things device is turned on, according to its own wireless access mode, actively scan the corresponding wireless channel with the highest signal strength (that is, the dedicated Internet of Things wireless access channel), and use the corresponding wireless channel The Internet of Things special access password of the access mode is used to access the wireless channel, and the Internet of Things device is connected to the Internet of Things gateway after access.

203、物联网设备连接上物联网网关后,上传设备描述信息。203. After the IoT device is connected to the IoT gateway, upload device description information.

204、物联网网关监测到有物联网设备通过物联网专用无线信道连接后,阻塞该物联网设备向其他设备或网络的通信,并监测物联网设备上传的设备描述信息。204. After the IoT gateway detects that an IoT device is connected through the IoT dedicated wireless channel, it blocks the communication of the IoT device to other devices or networks, and monitors the device description information uploaded by the IoT device.

205、物联网网关根据物联网设备上传的设备描述信息形成设备描述,将设备描述与本地设备库中信息匹配,如存在匹配信息,则允许该物联网设备接入,并开放该物联网设备和其他设备或网络的数据通信,否则进行步骤206;205. The IoT gateway forms a device description based on the device description information uploaded by the IoT device, and matches the device description with the information in the local device library. If there is matching information, the IoT device is allowed to access, and the IoT device and Data communication of other devices or networks, otherwise go to step 206;

206、物联网网关将设备描述推送到与该物联网网关绑定的用户终端物联网网关应用上;206. The IoT gateway pushes the device description to the user terminal IoT gateway application bound to the IoT gateway;

207、用户根据用户终端物联网网关应用的推送提示确定是否允许该物联网设备接入,并可设置其他设备或网络访问该物联网设备的权限,和/或该物联网设备访问其他设备或网络的权限;应用将用户的选择返回给物联网网关。207. The user determines whether to allow the Internet of Things device to access according to the push prompt of the user terminal Internet of Things gateway application, and can set the permission of other devices or networks to access the Internet of Things device, and/or the Internet of Things device to access other devices or networks permissions; the app returns the user's choice to the IoT Gateway.

208、如果用户允许接入,则物联网网关根据设备描述信息将该物联网设备添加到本地设备库中,进行设备注册,根据用户设置配置访问权限,并开放该物联网设备和其他设备或网络的数据通信;208. If the user allows access, the IoT gateway adds the IoT device to the local device library according to the device description information, performs device registration, configures access rights according to user settings, and opens the IoT device and other devices or networks data communication;

如果用户不允许接入,则物联网网关关闭该物联网设备的连接。If the user does not allow access, the IoT gateway closes the connection of the IoT device.

下面用两个具体应用场景中的例子进一步说明本实施例。The following uses examples in two specific application scenarios to further illustrate this embodiment.

(1)WIFI无线场景(1) WIFI wireless scene

物联网网关A开启WIFI网络,并将预定的物联网专用无线接入标识IoT_WIFI配置为所述WIFI网络的SSID(服务集标识),为了安全可以隐藏该SSID。设置所述WIFI网络的接入密码为预定的物联网专用接入密码(如IoT_access)。The Internet of Things gateway A opens the WIFI network, and configures the predetermined IoT-specific wireless access identifier IoT_WIFI as the SSID (Service Set Identifier) of the WIFI network, and the SSID can be hidden for safety. Set the access password of the WIFI network as a predetermined Internet of Things dedicated access password (such as IoT_access).

物联网设备B开机后扫描WIFI网络,请求接入SSID为IoT_WIFI的WIFI网络,利用WIFI对应的物联网专用接入密码IoT_access接入到网络中,连接上物联网网关A。IoT device B scans the WIFI network after starting up, requests to access the WIFI network whose SSID is IoT_WIFI, uses the IoT-specific access password IoT_access corresponding to WIFI to access the network, and connects to IoT gateway A.

物联网设备B建立连接后,向物联网网关A上传其设备描述信息,如XML设备描述文件:After the IoT device B establishes the connection, it uploads its device description information to the IoT gateway A, such as the XML device description file:

<DeviceDescription><Device Description>

<DeviceType>温度传感器</DeviceType><DeviceType>Temperature Sensor</DeviceType>

<DeviceManufactor>XXX</DeviceManufactor><DeviceManufactor>XXX</DeviceManufactor>

<DeviceID>12345678</DeviceID><DeviceID>12345678</DeviceID>

<DeviceModel>H-113</DeviceModel><DeviceModel>H-113</DeviceModel>

</DeviceDescription></DeviceDescription>

物联网设备B可以通过向WIFI网关IP地址的指定端口发送数据包实现设备描述文件上传。The IoT device B can upload the device description file by sending a data packet to the designated port of the WIFI gateway IP address.

物联网网关A监测到物联网设备B连接后,阻塞物联网设备B向其他非网关IP地址的通信,并在指定端口上监测物联网设备B上传的设备描述信息。物联网网关A将物联网设备B的设备描述信息与本地设备库中的设备信息匹配,发现没有匹配的信息,物联网网关A向与本物联网网关绑定的应用C推送新设备接入的提示并按照应用格式推送新设备的信息,如:After the IoT gateway A detects the connection of the IoT device B, it blocks the communication of the IoT device B to other non-gateway IP addresses, and monitors the device description information uploaded by the IoT device B on the designated port. IoT gateway A matches the device description information of IoT device B with the device information in the local device library, and finds that there is no matching information. IoT gateway A pushes a notification of new device access to application C bound to this IoT gateway And push the information of the new device according to the application format, such as:

“现有厂家XXX生产的温度传感器接入,类型为H-113,是否接入?”"The temperature sensor produced by the existing manufacturer XXX is connected, the type is H-113, is it connected?"

用户终端上的应用C收到提示后,用户点确认允许该物联网设备B(即温度传感器)接入,并配置空调类型设备可以访问该物联网设备B。物联网网关A收到应用C的确认信息后,将物联网设备B的信息添加到本地设备库,并将物联网设备B注册(如将物联网设备B添加到本物联网网关管理的物联网设备资源池中),配置访问权限为空调类型设备可访问,并允许物联网设备B和其他IP地址通信。After the application C on the user terminal receives the prompt, the user confirms to allow the access of the IoT device B (that is, the temperature sensor), and configures the air conditioner type device to access the IoT device B. After the IoT gateway A receives the confirmation information from the application C, it adds the information of the IoT device B to the local device library, and registers the IoT device B (for example, adding the IoT device B to the IoT devices managed by the IoT gateway In the resource pool), configure the access permission to be accessible to air conditioner devices, and allow IoT device B to communicate with other IP addresses.

(2)蓝牙无线场景(2) Bluetooth wireless scene

物联网网关A开启蓝牙,并将预定的物联网专用无线接入标识IoT_Bluetooth_GW配置为本物联网网关的名称,设置接入适配码为预定的物联网专用接入密码(如123)。The Internet of Things gateway A turns on Bluetooth, and configures the predetermined Internet of Things special wireless access identifier IoT_Bluetooth_GW as the name of the Internet of Things gateway, and sets the access adaptation code as the predetermined Internet of Things special access password (such as 123).

物联网设备B开机后扫描蓝牙连接,发现名称为IoT_Bluetooth_GW的设备,利用预定的物联网专用接入密码123作为适配码接入到网络中,连接上物联网网关A。IoT device B scans the Bluetooth connection after starting up, finds a device named IoT_Bluetooth_GW, uses the predetermined IoT-specific access password 123 as an adaptation code to access the network, and connects to IoT gateway A.

物联网设备B建立连接后,向物联网网关A上传其设备描述信息,如XML设备描述文件:After the IoT device B establishes the connection, it uploads its device description information to the IoT gateway A, such as the XML device description file:

<DeviceDescription><Device Description>

<DeviceType>温度传感器</DeviceType><DeviceType>Temperature Sensor</DeviceType>

<DeviceManufactor>XXX</DeviceManufactor><DeviceManufactor>XXX</DeviceManufactor>

<DeviceID>12345678</DeviceID><DeviceID>12345678</DeviceID>

<DeviceModel>H-113</DeviceModel><DeviceModel>H-113</DeviceModel>

</DeviceDescription></DeviceDescription>

物联网设备B可以通过向指定蓝牙端口发送数据包实现设备描述文件上传。The IoT device B can upload the device description file by sending a data packet to the designated Bluetooth port.

物联网网关A监测到物联网设备B连接后,阻塞物联网设备B向其他设备的通信,并在指定蓝牙端口上监测物联网设备B上传的设备描述信息。物联网网关A将物联网设备B的设备描述信息与本地设备库中的设备信息匹配,发现没有匹配的信息,物联网网关A向与本物联网网关绑定的应用C推送新设备接入的提示并按照应用格式推送新设备的信息,如:After the IoT gateway A detects the connection of the IoT device B, it blocks the communication of the IoT device B to other devices, and monitors the device description information uploaded by the IoT device B on the designated Bluetooth port. The IoT gateway A matches the device description information of the IoT device B with the device information in the local device library, and finds that there is no matching information, and the IoT gateway A pushes a prompt for new device access to the application C bound to the IoT gateway And push the information of the new device according to the application format, such as:

“现有厂家XXX生产的温度传感器接入,类型为H-113,是否接入?”"The temperature sensor produced by the existing manufacturer XXX is connected, the type is H-113, is it connected?"

用户终端上的应用C收到提示后,用户点确认允许该物联网设备B(即温度传感器)接入。物联网网关A收到应用C的确认信息后,将物联网设备B的信息添加到本地设备库,并将物联网设备B注册,如将设备B添加到连接的物联网设备资源池中开放给相关应用,并允许物联网设备B通信。After the application C on the user terminal receives the prompt, the user clicks confirmation to allow the Internet of Things device B (ie, the temperature sensor) to access. After IoT gateway A receives the confirmation information from application C, it adds the information of IoT device B to the local device library, and registers IoT device B, such as adding device B to the connected IoT device resource pool and opening it to related applications and allow IoT device B to communicate.

实施例二、一种物联网网关接入认证系统,包括:Embodiment 2, an Internet of Things gateway access authentication system, comprising:

接入模块,设置于物联网设备中,用于在物联网设备开机后根据自身的无线接入方式扫描相应接入方式的无线信道,选择满足预定条件的无线信道,根据预定规则生成物联网专用接入密码接入所选择的无线信道,连接物联网网关,上传设备描述信息;The access module is set in the IoT device, and is used to scan the wireless channel of the corresponding access mode according to its own wireless access mode after the IoT device is turned on, select the wireless channel that meets the predetermined conditions, and generate the dedicated network of the Internet of Things according to the predetermined rules. Access the password to access the selected wireless channel, connect to the IoT gateway, and upload device description information;

认证模块,设置于所述物联网网关中,用于监测到有物联网设备连接所述物联网网关后,阻塞该物联网设备向其他设备或网络的通信,根据该物联网设备上传的设备描述信息进行认证,如认证成功则允许该物联网设备接入,并开放该物联网设备和其他设备或网络的数据通信。The authentication module is set in the Internet of Things gateway, and is used to block the communication of the Internet of Things device to other devices or networks after detecting that an Internet of Things device is connected to the Internet of Things gateway. According to the device description uploaded by the Internet of Things device If the authentication is successful, the IoT device is allowed to access, and the data communication between the IoT device and other devices or networks is opened.

本实施例的一种实施方式中,所述系统还可以包括:In an implementation manner of this embodiment, the system may further include:

配置模块,设置于所述物联网网关中,用于配置所支持的无线接入方式下的无线信道,使用预定格式的物联网专用无线接入标识作为所述无线信道的标识,并按照预定规则生成物联网专用接入密码为所述无线信道的接入密码。The configuration module is set in the Internet of Things gateway, and is used to configure the wireless channel under the supported wireless access mode, using the Internet of Things special wireless access identification in a predetermined format as the identification of the wireless channel, and according to the predetermined rules Generate the Internet of Things special access password as the access password of the wireless channel.

本实施例的一种实施方式中,所述预定条件可以包括:In an implementation manner of this embodiment, the predetermined conditions may include:

无线信道的标识的格式符合预定格式;The format of the identification of the wireless channel conforms to a predetermined format;

或者无线信道的标识和预存的标识相同;Or the identification of the wireless channel is the same as the pre-stored identification;

所述接入模块根据预定规则生成物联网专用接入密码是指以下任一方式:The access module generating the Internet of Things-specific access password according to predetermined rules refers to any of the following methods:

所述接入模块以所述无线信道的标识的格式对应的预置密码作为所述物联网专用接入密码;:The access module uses the preset password corresponding to the format of the identification of the wireless channel as the dedicated access password for the Internet of Things;:

所述接入模块以所选择的无线信道的标识中预定的一个或多个位置上的字符作为所述物联网专用接入密码;The access module uses characters at one or more predetermined positions in the selected wireless channel identifier as the IoT-specific access password;

所述接入模块以预定方式对所选择的无线信道的标识进行处理,将处理结果作为所述物联网专用接入密码。The access module processes the identifier of the selected wireless channel in a predetermined manner, and uses the processing result as the IoT-specific access password.

本实施例的一种实施方式中,所述系统还可以包括:In an implementation manner of this embodiment, the system may further include:

控制模块,用于当认证不成功时,将根据所述设备描述信息生成的设备描述推送到与该物联网网关绑定的用户终端的物联网网关应用上;接收所述物联网网关应用根据用户操作所返回的设置信息;如果所述设置信息指示允许所述物联网设备接入,则将该物联网设备的设备描述添加到本地设备库中,并开放该物联网设备和其他设备或网络的数据通信;如果所述设置信息指示不允许所述物联网设备接入,则关闭该物联网设备的连接。The control module is used to push the device description generated according to the device description information to the Internet of Things gateway application of the user terminal bound to the Internet of Things gateway when the authentication is unsuccessful; Operate the returned setting information; if the setting information indicates that the IoT device is allowed to access, add the device description of the IoT device to the local device library, and open the connection between the IoT device and other devices or networks Data communication; if the setting information indicates that the Internet of Things device is not allowed to access, then close the connection of the Internet of Things device.

本实施方式中,所述设置信息中还可以包括访问权限;所述访问权限可以包括其他设备或网络访问该物联网设备的权限,和/或该物联网设备访问其他设备或网络的权限;In this embodiment, the setting information may also include access permissions; the access permissions may include permissions for other devices or networks to access the IoT device, and/or permissions for the IoT device to access other devices or networks;

所述控制模块开放该物联网设备和其他设备或网络的数据通信具体可以是指:The control module opening the data communication between the IoT device and other devices or networks may specifically refer to:

所述控制模块根据所述设置信息中的所述访问权限开放该物联网设备和其他设备或网络的数据通信。The control module enables data communication between the IoT device and other devices or networks according to the access authority in the setting information.

本领域普通技术人员可以理解上述方法中的全部或部分步骤可通过程序来指令相关硬件完成,所述程序可以存储于计算机可读存储介质中,如只读存储器、磁盘或光盘等。可选地,上述实施例的全部或部分步骤也可以使用一个或多个集成电路来实现。相应地,上述实施例中的各模块/单元可以采用硬件的形式实现,也可以采用软件功能模块的形式实现。本发明不限制于任何特定形式的硬件和软件的结合。Those skilled in the art can understand that all or part of the steps in the above method can be completed by instructing relevant hardware through a program, and the program can be stored in a computer-readable storage medium, such as a read-only memory, a magnetic disk or an optical disk, and the like. Optionally, all or part of the steps in the foregoing embodiments may also be implemented using one or more integrated circuits. Correspondingly, each module/unit in the foregoing embodiments may be implemented in the form of hardware, or may be implemented in the form of software function modules. The present invention is not limited to any specific combination of hardware and software.

当然,本发明还可有其他多种实施例,在不背离本发明精神及其实质的情况下,熟悉本领域的技术人员当可根据本发明作出各种相应的改变和变形,但这些相应的改变和变形都应属于本发明的权利要求的保护范围。Of course, the present invention can also have other various embodiments, and those skilled in the art can make various corresponding changes and deformations according to the present invention without departing from the spirit and essence of the present invention, but these corresponding Changes and deformations should all belong to the protection scope of the claims of the present invention.

Claims (10)

1.一种物联网网关接入认证方法,包括:1. An Internet of Things gateway access authentication method, comprising: S110、物联网设备开机后根据自身的无线接入方式扫描相应接入方式的无线信道,选择满足预定条件的无线信道,根据预定规则生成物联网专用接入密码接入所选择的无线信道,连接物联网网关,上传设备描述信息;S110. After the Internet of Things device is turned on, scan the wireless channel of the corresponding access method according to its own wireless access method, select a wireless channel that meets the predetermined conditions, generate an Internet of Things special access password according to the predetermined rule to access the selected wireless channel, and connect IoT gateway, upload device description information; S120、所述物联网网关监测到有物联网设备连接后,阻塞该物联网设备向其他设备或网络的通信,根据该物联网设备上传的设备描述信息进行认证,如认证成功则允许该物联网设备接入,并开放该物联网设备和其他设备或网络的数据通信。S120. After the IoT gateway detects that an IoT device is connected, it blocks the communication of the IoT device to other devices or networks, performs authentication according to the device description information uploaded by the IoT device, and allows the IoT device if the authentication is successful. Device access, and open data communication between the IoT device and other devices or networks. 2.如权利要求1所述的方法,其特征在于,所述步骤S110前还包括:2. The method according to claim 1, characterized in that, before the step S110, it also comprises: 所述物联网网关配置所支持的无线接入方式下的无线信道,使用预定格式的物联网专用无线接入标识作为所述无线信道的标识,并按照预定规则生成物联网专用接入密码为所述无线信道的接入密码。The Internet of Things gateway configures the wireless channel under the supported wireless access mode, uses the Internet of Things special wireless access identification in a predetermined format as the identification of the wireless channel, and generates the Internet of Things special access password according to predetermined rules. Access password of the wireless channel mentioned above. 3.如权利要求1或2所述的方法,其特征在于,所述预定条件包括:3. The method according to claim 1 or 2, wherein the predetermined conditions include: 无线信道的标识的格式符合预定格式;The format of the identification of the wireless channel conforms to a predetermined format; 或者无线信道的标识和预存的标识相同;Or the identification of the wireless channel is the same as the pre-stored identification; 所述根据预定规则生成物联网专用接入密码的步骤包括以下任一方式:The step of generating a dedicated access password for the Internet of Things according to predetermined rules includes any of the following methods: 以所述无线信道的标识的格式对应的预置密码作为所述物联网专用接入密码;Using the preset password corresponding to the format of the identification of the wireless channel as the dedicated access password for the Internet of Things; 以所选择的无线信道的标识中预定的一个或多个位置上的字符作为所述物联网专用接入密码;Using characters at one or more predetermined positions in the selected wireless channel identifier as the IoT-specific access password; 以预定方式对所选择的无线信道的标识进行处理,将处理结果作为所述物联网专用接入密码。The identification of the selected wireless channel is processed in a predetermined manner, and the processing result is used as the special access password for the Internet of Things. 4.如权利要求1所述的方法,其特征在于,所述步骤S120后还包括:4. The method according to claim 1, further comprising: after the step S120: 如果认证不成功,则所述物联网网关将根据所述设备描述信息生成的设备描述推送到与该物联网网关绑定的用户终端的物联网网关应用上;If the authentication is unsuccessful, the IoT gateway pushes the device description generated according to the device description information to the IoT gateway application of the user terminal bound to the IoT gateway; 所述物联网网关接收所述物联网网关应用根据用户操作所返回的设置信息;如果所述设置信息指示允许所述物联网设备接入,则将该物联网设备的设备描述添加到本地设备库中,并开放该物联网设备和其他设备或网络的数据通信;如果所述设置信息指示不允许所述物联网设备接入,则关闭该物联网设备的连接。The IoT gateway receives the setting information returned by the IoT gateway application according to the user operation; if the setting information indicates that the IoT device is allowed to access, then add the device description of the IoT device to the local device library and open the data communication between the IoT device and other devices or networks; if the setting information indicates that the IoT device is not allowed to access, close the connection of the IoT device. 5.如权利要求4所述的方法,其特征在于,所述设置信息中还包括访问权限;所述访问权限包括其他设备或网络访问该物联网设备的权限,和/或该物联网设备访问其他设备或网络的权限;5. The method according to claim 4, wherein the setting information also includes access rights; the access rights include the rights of other devices or networks to access the IoT device, and/or the IoT device access permissions on other devices or networks; 所述开放该物联网设备和其他设备或网络的数据通信的步骤包括:The steps of opening the data communication between the IoT device and other devices or networks include: 根据所述设置信息中的所述访问权限开放该物联网设备和其他设备或网络的数据通信。Open the data communication between the IoT device and other devices or networks according to the access authority in the setting information. 6.一种物联网网关接入认证系统,其特征在于,包括:6. An Internet of Things gateway access authentication system, characterized in that it comprises: 接入模块,设置于物联网设备中,用于在物联网设备开机后根据自身的无线接入方式扫描相应接入方式的无线信道,选择满足预定条件的无线信道,根据预定规则生成物联网专用接入密码接入所选择的无线信道,连接物联网网关,上传设备描述信息;The access module is set in the IoT device, and is used to scan the wireless channel of the corresponding access mode according to its own wireless access mode after the IoT device is turned on, select the wireless channel that meets the predetermined conditions, and generate the dedicated network of the Internet of Things according to the predetermined rules. Access the password to access the selected wireless channel, connect to the IoT gateway, and upload device description information; 认证模块,设置于所述物联网网关中,用于监测到有物联网设备连接所述物联网网关后,阻塞该物联网设备向其他设备或网络的通信,根据该物联网设备上传的设备描述信息进行认证,如认证成功则允许该物联网设备接入,并开放该物联网设备和其他设备或网络的数据通信。The authentication module is set in the Internet of Things gateway, and is used to block the communication of the Internet of Things device to other devices or networks after detecting that an Internet of Things device is connected to the Internet of Things gateway. According to the device description uploaded by the Internet of Things device If the authentication is successful, the IoT device is allowed to access, and the data communication between the IoT device and other devices or networks is opened. 7.如权利要求6所述的系统,其特征在于,还包括:7. The system of claim 6, further comprising: 配置模块,设置于所述物联网网关中,用于配置所支持的无线接入方式下的无线信道,使用预定格式的物联网专用无线接入标识作为所述无线信道的标识,并按照预定规则生成物联网专用接入密码为所述无线信道的接入密码。The configuration module is set in the Internet of Things gateway, and is used to configure the wireless channel under the supported wireless access mode, use the Internet of Things special wireless access identification in a predetermined format as the identification of the wireless channel, and follow the predetermined rules Generate the Internet of Things special access password as the access password of the wireless channel. 8.如权利要求6或7所述的系统,其特征在于,所述预定条件包括:8. The system according to claim 6 or 7, wherein the predetermined conditions include: 无线信道的标识的格式符合预定格式;The format of the identification of the wireless channel conforms to a predetermined format; 或者无线信道的标识和预存的标识相同;Or the identification of the wireless channel is the same as the pre-stored identification; 所述接入模块根据预定规则生成物联网专用接入密码是指以下任一方式:The access module generating the Internet of Things-specific access password according to predetermined rules refers to any of the following methods: 所述接入模块以所述无线信道的标识的格式对应的预置密码作为所述物联网专用接入密码;:The access module uses the preset password corresponding to the format of the identification of the wireless channel as the dedicated access password for the Internet of Things;: 所述接入模块以所选择的无线信道的标识中预定的一个或多个位置上的字符作为所述物联网专用接入密码;The access module uses characters at one or more predetermined positions in the selected wireless channel identifier as the IoT-specific access password; 所述接入模块以预定方式对所选择的无线信道的标识进行处理,将处理结果作为所述物联网专用接入密码。The access module processes the identifier of the selected wireless channel in a predetermined manner, and uses the processing result as the IoT-specific access password. 9.如权利要求6所述的系统,其特征在于,还包括:9. The system of claim 6, further comprising: 控制模块,用于当认证不成功时,将根据所述设备描述信息生成的设备描述推送到与该物联网网关绑定的用户终端的物联网网关应用上;接收所述物联网网关应用根据用户操作所返回的设置信息;如果所述设置信息指示允许所述物联网设备接入,则将该物联网设备的设备描述添加到本地设备库中,并开放该物联网设备和其他设备或网络的数据通信;如果所述设置信息指示不允许所述物联网设备接入,则关闭该物联网设备的连接。The control module is used to push the device description generated according to the device description information to the Internet of Things gateway application of the user terminal bound to the Internet of Things gateway when the authentication is unsuccessful; Operate the returned setting information; if the setting information indicates that the IoT device is allowed to access, add the device description of the IoT device to the local device library, and open the connection between the IoT device and other devices or networks Data communication; if the setting information indicates that the Internet of Things device is not allowed to access, then close the connection of the Internet of Things device. 10.如权利要求9所述的系统,其特征在于,所述设置信息中还包括访问权限;所述访问权限包括其他设备或网络访问该物联网设备的权限,和/或该物联网设备访问其他设备或网络的权限;10. The system according to claim 9, wherein the setting information also includes access rights; the access rights include the rights of other devices or networks to access the IoT device, and/or the IoT device access permissions on other devices or networks; 所述控制模块开放该物联网设备和其他设备或网络的数据通信是指:The control module opening the data communication between the IoT device and other devices or networks refers to: 所述控制模块根据所述设置信息中的所述访问权限开放该物联网设备和其他设备或网络的数据通信。The control module enables data communication between the IoT device and other devices or networks according to the access authority in the setting information.
CN201510145998.9A 2015-03-30 2015-03-30 A kind of things-internet gateway access authentication method and system Active CN104717225B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510145998.9A CN104717225B (en) 2015-03-30 2015-03-30 A kind of things-internet gateway access authentication method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510145998.9A CN104717225B (en) 2015-03-30 2015-03-30 A kind of things-internet gateway access authentication method and system

Publications (2)

Publication Number Publication Date
CN104717225A CN104717225A (en) 2015-06-17
CN104717225B true CN104717225B (en) 2018-04-27

Family

ID=53416186

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510145998.9A Active CN104717225B (en) 2015-03-30 2015-03-30 A kind of things-internet gateway access authentication method and system

Country Status (1)

Country Link
CN (1) CN104717225B (en)

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105451301B (en) * 2015-11-11 2019-03-19 中国联合网络通信集团有限公司 Wearable device gateway networking method and gateway management platform
CN105578470B (en) * 2016-02-29 2020-08-14 华为技术有限公司 Method, device and system for accessing Internet of things equipment to network
CN105812380A (en) * 2016-04-26 2016-07-27 北京小米移动软件有限公司 Verification method and device
CN108234405A (en) * 2016-12-15 2018-06-29 上海仪电(集团)有限公司中央研究院 A kind of terminal device automatic identification authentication method based on intelligent gateway
CN106790569B (en) * 2016-12-27 2019-12-13 安徽微慧公用通卡运营管理有限公司 method for realizing plug and play of terminal equipment based on Internet of things platform
DE102018204367A1 (en) 2018-03-22 2019-09-26 Siemens Schweiz Ag Method and system for authorizing the communication of a network node
CN110365468B (en) 2018-04-11 2021-09-14 华为技术有限公司 Anonymization processing method, device, equipment and storage medium
CN109040035B (en) * 2018-07-19 2019-03-15 江苏亨通智能物联系统有限公司 Quantum converged communication gateway
CN109040261A (en) * 2018-08-10 2018-12-18 南京熊猫电子制造有限公司 A kind of the Internet of Things management platform and management method of intelligent refrigerator
CN110474995A (en) * 2019-09-17 2019-11-19 广东腾宇光讯网络科技有限公司 A kind of Intelligent internet of things gateway based on IPV6
CN111865592A (en) * 2020-09-21 2020-10-30 四川科锐得电力通信技术有限公司 Internet of things equipment fast access method and device, Internet of things platform and storage medium
CN112543457B (en) * 2020-11-23 2021-09-03 广州技象科技有限公司 Gateway switching binding method and device for terminal of Internet of things
CN112769768B (en) * 2020-12-23 2022-01-11 广州技象科技有限公司 Internet of things terminal authentication method, device, equipment and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102325322A (en) * 2011-05-18 2012-01-18 西安电子科技大学 Multi-mode access gateway device supporting wireless network and authentication method
CN102883320A (en) * 2012-09-18 2013-01-16 东莞宇龙通信科技有限公司 WiFi (Wireless Fidelity) authentication method and system thereof
CN103987042A (en) * 2014-05-08 2014-08-13 中国联合网络通信集团有限公司 Terminal access authentication method and access gateway
CN104144522A (en) * 2013-05-09 2014-11-12 杭州古北电子科技有限公司 Method for directly connecting WIFI devices with WIFI router without configuration

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103312760B (en) * 2012-11-12 2015-10-21 中兴通讯股份有限公司 Realize the ability open platform of terminal equipment plug and play management, method and gateway

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102325322A (en) * 2011-05-18 2012-01-18 西安电子科技大学 Multi-mode access gateway device supporting wireless network and authentication method
CN102883320A (en) * 2012-09-18 2013-01-16 东莞宇龙通信科技有限公司 WiFi (Wireless Fidelity) authentication method and system thereof
CN104144522A (en) * 2013-05-09 2014-11-12 杭州古北电子科技有限公司 Method for directly connecting WIFI devices with WIFI router without configuration
CN103987042A (en) * 2014-05-08 2014-08-13 中国联合网络通信集团有限公司 Terminal access authentication method and access gateway

Also Published As

Publication number Publication date
CN104717225A (en) 2015-06-17

Similar Documents

Publication Publication Date Title
CN104717225B (en) A kind of things-internet gateway access authentication method and system
US9763094B2 (en) Methods, devices and systems for dynamic network access administration
WO2020098253A1 (en) Network access method and apparatus, related devices, and storage medium
US8392712B1 (en) System and method for provisioning a unique device credential
CN103929748B (en) A kind of Internet of Things wireless terminal and its collocation method and wireless network access point
US9584482B2 (en) Access control lists for private networks of system agnostic connected devices
WO2018090830A1 (en) Method and apparatus allowing smart terminal device to access internet
JP6254747B2 (en) Information providing method, apparatus, program, and recording medium
EP2291017B1 (en) Method for network connection
EP3849152A1 (en) Methods and systems for connecting a wireless device to a wireless network
CN105338529B (en) A wireless network connection method and system
TWI462604B (en) Wireless network client-authentication system and wireless network connection method thereof
CN111492358B (en) Device authentication
US20230156466A1 (en) Bluetooth Networking Method for Electronic Device and Related Device
KR102074760B1 (en) Image display apparatus for conducting auto wireless communication among devices and image displaying method thereof
JP2017514410A (en) Discriminating method and corresponding terminal, computer program product, and storage medium
CN105991786A (en) Wi-Fi access configuration method, Wi-Fi terminal and access equipment
US10158418B2 (en) Relay apparatus, communication apparatus, control methods thereof, system, and non-transitory computer-readable storage medium
US20190200226A1 (en) Method of authenticating access to a wireless communication network and corresponding apparatus
CN113395743A (en) Device connection method and system, corresponding terminal device and networking method
EP3206423A1 (en) Device and method for connecting devices to a network
CN115412887A (en) Distribution network method, device, system, equipment and storage medium
CN108834141A (en) A kind of novel things-internet gateway access authentication method and system
US11412377B2 (en) Method of configuring a multimedia device intended to be connected to an interconnection device
US12256223B2 (en) Network access tokens for accessories

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant