[go: up one dir, main page]

CN106658488B - Intelligent household appliance and method and device for safely accessing intelligent household appliance - Google Patents

Intelligent household appliance and method and device for safely accessing intelligent household appliance Download PDF

Info

Publication number
CN106658488B
CN106658488B CN201610875477.3A CN201610875477A CN106658488B CN 106658488 B CN106658488 B CN 106658488B CN 201610875477 A CN201610875477 A CN 201610875477A CN 106658488 B CN106658488 B CN 106658488B
Authority
CN
China
Prior art keywords
user terminal
encryption key
identifier
household appliance
intelligent household
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201610875477.3A
Other languages
Chinese (zh)
Other versions
CN106658488A (en
Inventor
丁龙浩
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Haier Smart Home Co Ltd
Haier Uplus Intelligent Technology Beijing Co Ltd
Original Assignee
Haier Uplus Intelligent Technology Beijing Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Haier Uplus Intelligent Technology Beijing Co Ltd filed Critical Haier Uplus Intelligent Technology Beijing Co Ltd
Priority to CN201610875477.3A priority Critical patent/CN106658488B/en
Publication of CN106658488A publication Critical patent/CN106658488A/en
Application granted granted Critical
Publication of CN106658488B publication Critical patent/CN106658488B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Power Engineering (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Selective Calling Equipment (AREA)
  • Telephonic Communication Services (AREA)
  • Small-Scale Networks (AREA)

Abstract

本发明提供一种智能家电及安全访问智能家电的方法和装置,所述智能家电包括无线通信模块,支持虚拟接入softap模式;接收模块,用于接收用户终端的密钥请求和所述用户终端的标识及加密数据;主控模块,用于在softap模式下生成加密密钥,在接入无线局域网的情况下查找所述加密密钥,并对所述加密数据进行解密,以及响应所述加密数据中携带的对所述智能家电的访问请求和/或控制请求;存储模块,用于存储所述用户终端的标识和所述加密密钥;发送模块,用于发送所述智能家电的标识、与所述用户终端的标识对应的加密密钥。该智能家电能够利用softap技术完成加密密钥交换以及用户认证,行加密通信,从而完成智能家电的安全访问过程。

Figure 201610875477

The present invention provides a smart home appliance and a method and device for safely accessing the smart home appliance. The smart home appliance includes a wireless communication module, which supports a virtual access softap mode; and a receiving module, which is used for receiving a key request from a user terminal and the user terminal. The identification and encrypted data; the main control module is used to generate an encryption key in the softap mode, find the encryption key when accessing the wireless local area network, decrypt the encrypted data, and respond to the encryption an access request and/or a control request to the smart home appliance carried in the data; a storage module for storing the identifier of the user terminal and the encryption key; a sending module for sending the identification, An encryption key corresponding to the identity of the user terminal. The smart home appliance can use the softap technology to complete encrypted key exchange, user authentication, and encrypted communication, thereby completing the secure access process of the smart home appliance.

Figure 201610875477

Description

一种智能家电及安全访问智能家电的方法和装置A smart home appliance and a method and device for safely accessing the smart home appliance

技术领域technical field

本发明涉及局域网通信技术领域,尤其涉及一种智能家电及其访问方法和装置。The present invention relates to the technical field of local area network communication, in particular to an intelligent household appliance and an access method and device thereof.

背景技术Background technique

随着网络的普及,越来越多的wifi智能家电进入市场,如何快速、便捷地进行身份认证、实现安全访问设备,是亟待解决的问题。现有的主要认证方式有基于服务器认证和基于设备固定访问码的认证两种方式。With the popularity of the Internet, more and more wifi smart home appliances have entered the market. How to quickly and conveniently perform identity authentication and secure access to devices is an urgent problem to be solved. There are two main existing authentication methods: server-based authentication and device-based fixed access code authentication.

基于服务器的认证方式为:手机端接入智能家电后,触发智能家电的认证流程,远程认证服务器同时向手机端和智能家电发送认证信息;手机端把认证信息发送到智能家电,智能家电使用已经接收到的认证信息进行认证,决定是否接受手机端的访问请求。这种方式需要设备能够与服务器同步用户信息,无法单独在局域网内完成,普适性不好。The server-based authentication method is: after the mobile terminal is connected to the smart home appliance, the authentication process of the smart home appliance is triggered, and the remote authentication server sends the authentication information to the mobile terminal and the smart home appliance at the same time; the mobile terminal sends the authentication information to the smart home appliance, and the smart home appliance has already used The received authentication information is authenticated to decide whether to accept the access request from the mobile terminal. This method requires the device to be able to synchronize user information with the server, which cannot be done in the local area network alone, and is not universally applicable.

基于设备固定访问码的认证方式为:手机端接入智能家电后,发送智能家电内置的访问码,智能家电进行认证,决定是否接受手机端的访问请求。这种认证方式要求设备有输入装置,不利于广泛应用;或者要求预置固定的访问码,增加了生产成本,并需要售后维护。The authentication method based on the fixed access code of the device is: after the mobile terminal is connected to the smart home appliance, it sends the built-in access code of the smart home appliance, and the smart home appliance performs authentication to decide whether to accept the access request from the mobile phone terminal. This authentication method requires the device to have an input device, which is not conducive to wide application; or requires a preset fixed access code, which increases production costs and requires after-sales maintenance.

上述两种认证方式都需要用户进行输入,大大降低用户的体验。The above two authentication methods both require user input, which greatly reduces the user experience.

发明内容SUMMARY OF THE INVENTION

本发明旨在解决上面描述的问题。本发明的一个目的是提供一种解决以上问题中的任何一个的安全访问智能家电的方法及装置。具体地,本发明提供能够简单、具有普适性的安全访问局域网内智能家电的方法及装置。The present invention aims to solve the problems described above. An object of the present invention is to provide a method and apparatus for securely accessing smart home appliances that solve any of the above problems. Specifically, the present invention provides a simple and universal method and device for securely accessing smart home appliances in a local area network.

根据本发明的第一方面,本发明提供了一种智能家电,所述智能家电包括无线通信模块、接收模块、主控模块、存储模块、发送模块,其中,所述无线通信模块,用于无线通信,且所述无线通信模块支持虚拟接入softap模式;According to a first aspect of the present invention, the present invention provides a smart home appliance, the smart home appliance includes a wireless communication module, a receiving module, a main control module, a storage module, and a sending module, wherein the wireless communication module is used for wireless communication, and the wireless communication module supports virtual access softap mode;

所述接收模块,用于在softap模式下接收用户终端的密钥请求和所述用户终端的标识,以及在接入无线局域网的情况下,接收所述用户终端的标识和加密数据,所述加密数据中携带对所述智能家电的访问请求和/或控制请求;The receiving module is used to receive the key request of the user terminal and the identifier of the user terminal in softap mode, and in the case of accessing the wireless local area network, receive the identifier of the user terminal and encrypted data, the encrypted data The data carries an access request and/or a control request to the smart home appliance;

所述主控模块,用于在softap模式下生成与所述用户终端的标识对应的加密密钥;在接入无线局域网的情况下,查找所述与所述用户终端的标识对应的加密密钥,并使用所述与所述用户终端的标识对应的加密密钥对所述加密数据进行解密,以及响应所述加密数据中携带的对所述智能家电的访问请求和/或控制请求;The main control module is used to generate an encryption key corresponding to the identification of the user terminal in softap mode; in the case of accessing a wireless local area network, search for the encryption key corresponding to the identification of the user terminal , and use the encryption key corresponding to the identifier of the user terminal to decrypt the encrypted data, and respond to the access request and/or control request to the smart home appliance carried in the encrypted data;

所述存储模块,用于存储所述用户终端的标识和所述与所述用户终端的标识对应的加密密钥;the storage module, configured to store the identifier of the user terminal and the encryption key corresponding to the identifier of the user terminal;

所述发送模块,用于在softap模式下向所述用户终端发送所述智能家电的标识、与所述用户终端的标识对应的加密密钥,以及在接入无线局域网的情况下,向所述用户终端发送对所述加密数据中携带的对所述智能家电的访问请求和/或控制请求的响应结果。The sending module is configured to send the identifier of the smart home appliance, the encryption key corresponding to the identifier of the user terminal to the user terminal in the softap mode, and, when accessing the wireless local area network, send the identifier to the user terminal. The user terminal sends a response result to the access request and/or control request to the smart home appliance carried in the encrypted data.

其中,所述用户终端的标识是指所述用户终端的地址信息,所述智能家电的标识是指所述智能家电的地址信息。The identifier of the user terminal refers to the address information of the user terminal, and the identifier of the smart home appliance refers to the address information of the smart home appliance.

适应于上述智能家电,本发明提供了一种安全访问智能家电的方法,所述方法包括:Adapting to the above-mentioned smart household appliances, the present invention provides a method for safely accessing smart household appliances, the method comprising:

智能家电进入softap模式,与用户终端建立第一连接;The smart home appliance enters the softap mode and establishes the first connection with the user terminal;

通过所述第一连接接收到所述用户终端的密钥请求后,获知所述用户终端的标识,生成并存储与所述用户终端的标识对应的加密密钥,并通过所述第一连接将所述智能家电的标识和所述与所述用户终端的标识对应的加密密钥发送至所述用户终端,退出softap模式;After receiving the key request from the user terminal through the first connection, obtain the identifier of the user terminal, generate and store an encryption key corresponding to the identifier of the user terminal, and encrypt the user terminal through the first connection. The identifier of the smart home appliance and the encryption key corresponding to the identifier of the user terminal are sent to the user terminal, and the softap mode is exited;

所述智能家电接入无线局域网,接收到所述无线局域网内用户终端发送的所述用户终端的标识和加密数据,查找到与所述用户终端的标识对应的加密密钥,并使用此加密密钥对所述加密数据成功解密后,响应所述加密数据中携带的访问请求和/或控制请求,并向所述用户终端发送响应结果。The smart home appliance is connected to the wireless local area network, receives the identification and encrypted data of the user terminal sent by the user terminal in the wireless local area network, finds the encryption key corresponding to the identification of the user terminal, and uses the encryption key. After the key pair successfully decrypts the encrypted data, responds to the access request and/or control request carried in the encrypted data, and sends a response result to the user terminal.

其中,所述用户终端的标识是指所述用户终端的地址信息;所述智能家电的标识是指所述智能家电的地址信息。The identifier of the user terminal refers to the address information of the user terminal; the identifier of the smart home appliance refers to the address information of the smart home appliance.

本发明还提供了一种智能家电,所述智能家电包括无线通信模块、接收模块、主控模块、存储模块、发送模块,其中,所述无线通信模块,用于进入或退出softap模式,或者,接入无线局域网;The present invention also provides a smart home appliance, which includes a wireless communication module, a receiving module, a main control module, a storage module, and a sending module, wherein the wireless communication module is used to enter or exit the softap mode, or, access to wireless local area network;

所述接收模块,用于在softap模式下接收用户终端的密钥请求和所述用户终端的标识,以及在接入无线局域网的情况下,接收所述用户终端的标识和加密数据,所述加密数据中携带对所述智能家电的访问请求和/或控制请求;The receiving module is used to receive the key request of the user terminal and the identifier of the user terminal in softap mode, and in the case of accessing the wireless local area network, receive the identifier of the user terminal and encrypted data, the encrypted data The data carries an access request and/or a control request to the smart home appliance;

所述主控模块,用于在softap模式下生成通用的加密密钥;在接入无线局域网的情况下,提取所述通用的加密密钥,并使用所述通用的加密密钥对所述加密数据进行解密;The main control module is used to generate a general encryption key in softap mode; in the case of accessing a wireless local area network, extract the general encryption key, and use the general encryption key to encrypt the encryption key data is decrypted;

所述存储模块,用于存储所述用户终端的标识和所述通用的加密密钥;the storage module for storing the identifier of the user terminal and the general encryption key;

所述发送模块,用于在softap模式下向所述用户终端发送所述通用的加密密钥和所述智能终端的标识,以及在接入无线局域网的情况下,向所述用户终端发送对所述加密数据中携带的对所述智能家电的访问请求和/或控制请求的响应结果。The sending module is configured to send the general encryption key and the identifier of the intelligent terminal to the user terminal in the softap mode, and in the case of accessing the wireless local area network, send the user terminal to the user terminal. The response result of the access request and/or control request to the smart home appliance carried in the encrypted data.

相适应于上述智能家电,本发明还提供了一种安全访问智能家电的方法,所述方法包括:Adapting to the above-mentioned smart household appliances, the present invention also provides a method for safely accessing smart household appliances, the method comprising:

智能家电进入softap模式,与用户终端建立第一连接;The smart home appliance enters the softap mode and establishes the first connection with the user terminal;

通过所述第一连接接收到所述用户终端的密钥请求后,生成通用的加密密钥,将所述通用的加密密钥和所述智能终端的标识发送至所述用户终端,退出softap模式;After receiving the key request from the user terminal through the first connection, generate a general encryption key, send the general encryption key and the identifier of the intelligent terminal to the user terminal, and exit the softap mode ;

所述智能家电接入无线局域网,接收到所述无线局域网内用户终端发送的所述用户终端的标识和加密数据,提取所述通用的加密密钥,并使用所述通用的加密密钥对所述加密数据成功解密后,响应所述加密数据中携带的访问请求和/或控制请求,并向所述用户终端发送响应结果。The smart home appliance is connected to the wireless local area network, receives the identification and encrypted data of the user terminal sent by the user terminal in the wireless local area network, extracts the general encryption key, and uses the general encryption key to After the encrypted data is successfully decrypted, respond to the access request and/or control request carried in the encrypted data, and send a response result to the user terminal.

另外,本发明还从另一方面提供了一种安全访问智能家电的方法,所述方法包括:In addition, the present invention also provides a method for safely accessing smart home appliances from another aspect, the method comprising:

用户终端与智能家电建立第一连接;The user terminal establishes a first connection with the smart home appliance;

所述用户终端通过所述第一连接向所述智能家电发送密钥请求信息,并接收和存储所述智能家电的标识和加密密钥;The user terminal sends key request information to the smart home appliance through the first connection, and receives and stores the identification and encryption key of the smart home appliance;

所述用户终端接入无线局域网,接收要访问控制的智能家电的标识以及访问请求和/或控制请求后,根据所述智能家电的标识查找与所述智能家电的标识对应的加密密钥,并根据所述与所述智能家电的标识对应的加密密钥对所述访问请求和/或控制请求进行加密,形成加密数据;The user terminal accesses the wireless local area network, and after receiving the identification of the smart home appliance to be accessed and controlled and the access request and/or the control request, searches for an encryption key corresponding to the identification of the smart home appliance according to the identification of the smart home appliance, and Encrypt the access request and/or the control request according to the encryption key corresponding to the identifier of the smart home appliance to form encrypted data;

通过所述无线局域网向所述智能家电发送所述加密数据和所述用户终端的标识,并接收所述智能家电对所述加密数据的响应结果。Send the encrypted data and the identifier of the user terminal to the smart home appliance through the wireless local area network, and receive a response result of the smart home appliance to the encrypted data.

其中,所述密钥请求信息中携带所述用户终端的标识。Wherein, the key request information carries the identifier of the user terminal.

最后,本发明还提供了一种安全访问智能家电的装置,所述安全访问智能家电的装置包括主控模块、发送模块、接收模块和存储模块,其中,所述主控模块,用于与智能家电建立连接,根据智能家电的标识查找与所述智能家电的标识对应的加密密钥,并根据所述与所述智能家电的标识对应的加密密钥对访问请求和/或控制请求进行加密,形成加密数据;Finally, the present invention also provides a device for safely accessing smart home appliances, the device for securely accessing smart home appliances includes a main control module, a sending module, a receiving module and a storage module, wherein the main control module is used to communicate with intelligent The home appliance establishes a connection, searches for an encryption key corresponding to the identification of the smart home appliance according to the identification of the smart home appliance, and encrypts the access request and/or the control request according to the encryption key corresponding to the identification of the smart home appliance, form encrypted data;

所述发送模块,用于向所述智能家电发送密钥请求信息、所述加密数据以及所述安全访问智能家电的装置的标识;the sending module, configured to send the key request information, the encrypted data and the identifier of the device for safely accessing the smart home appliance to the smart home appliance;

所述接收模块,用于接收所述智能家电的标识、所述访问请求和/或控制请求、加密密钥,以及所述智能家电对所述加密数据的响应结果;the receiving module, configured to receive the identifier of the smart home appliance, the access request and/or the control request, the encryption key, and the response result of the smart home appliance to the encrypted data;

所述存储模块,用于存储所述智能家电的标识和与所述智能家电的标识对应的加密密钥。The storage module is used for storing the identification of the smart home appliance and an encryption key corresponding to the identification of the smart home appliance.

本发明提供的智能家电能够利用softap技术完成加密密钥交换以及用户认证,并基于用户认证时交换的加密密钥进行加密通信,从而完成智能家电的安全访问过程。本发明的安全访问智能家电的方法和装置基于softap技术,只需用户简单操作家电,即可实现智能家电的安全访问,提高了智能家电的易用性;可以将设备的加密密钥粒度细化到单个手机,从而更加容易进行安全控制。该智能家电及其安全访问方法和装置均在局域网内单独完成,无需额外架设认证服务器,减少了设备的硬件成本,而且利于推广使用。The smart home appliance provided by the invention can use the softap technology to complete encryption key exchange and user authentication, and perform encrypted communication based on the encryption key exchanged during user authentication, thereby completing the safe access process of the smart home appliance. The method and device for safely accessing smart home appliances of the present invention are based on the softap technology, and only the user can simply operate the home appliances to realize safe access to the smart home appliances, thereby improving the usability of the smart home appliances; the granularity of the encryption keys of the devices can be refined. to a single phone for easier security control. The smart home appliance and the security access method and device thereof are all completed independently in the local area network, no additional authentication server needs to be set up, the hardware cost of the device is reduced, and the popularization and use are facilitated.

参照附图来阅读对于示例性实施例的以下描述,本发明的其他特性特征和优点将变得清晰。Other characteristic features and advantages of the present invention will become apparent upon reading the following description of exemplary embodiments with reference to the accompanying drawings.

附图说明Description of drawings

并入到说明书中并且构成说明书的一部分的附图示出了本发明的实施例,并且与描述一起用于解释本发明的原理。在这些附图中,类似的附图标记用于表示类似的要素。下面描述中的附图是本发明的一些实施例,而不是全部实施例。对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,可以根据这些附图获得其他的附图。The accompanying drawings, which are incorporated in and constitute a part of the specification, illustrate embodiments of the invention and, together with the description, serve to explain the principles of the invention. In the figures, like reference numerals are used to refer to like elements. The drawings in the following description are some, but not all, embodiments of the invention. For those of ordinary skill in the art, other drawings can be obtained from these drawings without creative effort.

图1示例性地示出了根据本发明的智能家电的模块结构示意图;FIG. 1 exemplarily shows a schematic diagram of a module structure of a smart home appliance according to the present invention;

图2示例性地示出了根据本发明的安全访问智能家电的方法的一种实施例的流程图;FIG. 2 exemplarily shows a flow chart of an embodiment of a method for securely accessing a smart home appliance according to the present invention;

图3示例性地示出了根据本发明的安全访问智能家电的方法的一种实施例的具体实施流程图;Fig. 3 exemplarily shows a specific implementation flow chart of an embodiment of the method for securely accessing a smart home appliance according to the present invention;

图4示例性地示出了根据本发明的安全访问智能家电的方法的另一种实施例的流程图;FIG. 4 exemplarily shows a flow chart of another embodiment of the method for securely accessing a smart home appliance according to the present invention;

图5示例性地示出了根据本发明的安全访问智能家电的方法的另一种实施例的具体实施流程图FIG. 5 exemplarily shows a specific implementation flow chart of another embodiment of the method for securely accessing a smart home appliance according to the present invention

图6示例性地示出了根据本发明的安全访问智能家电的装置的模块结构示意图。FIG. 6 exemplarily shows a schematic diagram of a module structure of a device for securely accessing a smart home appliance according to the present invention.

具体实施方式Detailed ways

为使本发明实施例的目的、技术方案和优点更加清楚,下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互任意组合。In order to make the purposes, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments These are some embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative efforts shall fall within the protection scope of the present invention. It should be noted that, the embodiments in the present application and the features in the embodiments may be arbitrarily combined with each other if there is no conflict.

在局域网内,用户可以接触、控制实体智能家电的前提下,默认认为用户可以认证通过。基于这个认证通过条件,本发明利用无线智能家电模块普遍具有的softap通信功能,对用户进行身份验证,为安全地访问智能家电提供了一种可行、方便、且快捷的方式。On the premise that users can access and control physical smart home appliances in the local area network, the default is that users can pass the authentication. Based on this authentication passing condition, the present invention utilizes the softap communication function generally possessed by the wireless smart home appliance module to verify the user's identity, and provides a feasible, convenient and fast way for safely accessing the smart home appliance.

图1示出了根据本发明的智能家电的一种实施例的模块结构示意图,参照图1所示,该智能家电包括无线通信模块、接收模块、主控模块、存储模块、发送模块。具体地,FIG. 1 shows a schematic structural diagram of a module of an embodiment of a smart home appliance according to the present invention. Referring to FIG. 1 , the smart home appliance includes a wireless communication module, a receiving module, a main control module, a storage module, and a sending module. specifically,

无线通信模块,用于进行无线通信,且该无线通信模块支持虚拟接入softap模式;A wireless communication module for wireless communication, and the wireless communication module supports virtual access softap mode;

接收模块,用于在softap模式下,接收用户终端的密钥请求和用户终端的标识;以及在接入无线局域网的情况下,接收用户终端的标识和加密数据,加密数据中携带对智能家电的访问请求和/或控制请求;The receiving module is used to receive the key request of the user terminal and the identifier of the user terminal in the softap mode; and in the case of accessing the wireless local area network, receive the identifier of the user terminal and encrypted data, and the encrypted data carries the information about the smart home appliance. access requests and/or control requests;

主控模块,用于在softap模式下,在接收模块接收用户终端的秘钥请求和用户终端的标识之后,生成与用户终端的标识对应的加密密钥;在接入无线局域网的情况下,接收模块接收用户终端的标识和加密数据之后,查找与用户终端的标识对应的加密密钥,并使用与用户终端的标识对应的加密密钥对加密数据进行解密,以及响应加密数据中携带的对智能家电的访问请求和/或控制请求;The main control module is used for, in the softap mode, after the receiving module receives the key request of the user terminal and the identification of the user terminal, generates an encryption key corresponding to the identification of the user terminal; in the case of accessing the wireless local area network, receives After the module receives the identification of the user terminal and the encrypted data, it searches for the encryption key corresponding to the identification of the user terminal, and uses the encryption key corresponding to the identification of the user terminal to decrypt the encrypted data, and responds to the encrypted data carried in the encrypted data. Access requests and/or control requests from appliances;

存储模块,用于在主控模块生成与用户终端的标识对应的加密密钥后,存储用户终端的标识和与用户终端的标识对应的加密密钥;a storage module, configured to store the identification of the user terminal and the encryption key corresponding to the identification of the user terminal after the main control module generates the encryption key corresponding to the identification of the user terminal;

发送模块,用于在softap模式下,存储模块存储用户终端的标识和与用户终端的标识对应的加密密钥之后,向用户终端发送智能家电的标识、与用户终端的标识对应的加密密钥,以及在接入无线局域网的情况下,主控模块在响应加密数据中携带的对智能家电的访问请求和/或控制请求之后,向用户终端发送对加密数据中携带的对智能家电的访问请求和/或控制请求的响应结果。The sending module is used for, in the softap mode, after the storage module stores the identifier of the user terminal and the encryption key corresponding to the identifier of the user terminal, sends the identifier of the smart home appliance and the encryption key corresponding to the identifier of the user terminal to the user terminal, And in the case of accessing the wireless local area network, after responding to the access request and/or control request to the smart home appliance carried in the encrypted data, the main control module sends the access request and/or control request to the smart home appliance carried in the encrypted data to the user terminal. / or control the response to the request.

其中,接收模块还可以用于在发送模块向用户终端发送智能家电的标识和与所述用户终端对应的加密密钥之后,接收所述用户终端发来的认证结束通知。The receiving module may also be configured to receive an authentication completion notification from the user terminal after the sending module sends the identifier of the smart home appliance and the encryption key corresponding to the user terminal to the user terminal.

具体地,用户终端的标识是指用户终端的地址信息,智能家电的标识是指智能家电的地址信息。Specifically, the identifier of the user terminal refers to the address information of the user terminal, and the identifier of the smart home appliance refers to the address information of the smart home appliance.

相对于上述智能家电,本发明还提供了一种安全访问智能家电的方法,图2示出了该安全访问智能家电的方法的流程图,参照图2所示,该方法包括:With respect to the above-mentioned smart household appliances, the present invention also provides a method for safely accessing smart household appliances. FIG. 2 shows a flowchart of the method for safely accessing smart household appliances. Referring to FIG. 2 , the method includes:

智能家电进入softap模式,与用户终端建立第一连接;The smart home appliance enters the softap mode and establishes the first connection with the user terminal;

通过第一连接接收到用户终端的密钥请求后,获知用户终端的标识,生成并存储与用户终端的标识对应的加密密钥,并通过第一连接将智能家电的标识和与用户终端的标识对应的加密密钥发送至用户终端,退出softap模式;After receiving the key request of the user terminal through the first connection, obtain the identification of the user terminal, generate and store an encryption key corresponding to the identification of the user terminal, and combine the identification of the smart home appliance with the identification of the user terminal through the first connection The corresponding encryption key is sent to the user terminal, and the softap mode is exited;

智能家电接入无线局域网,接收到无线局域网内用户终端发送的用户终端的标识和加密数据,查找到与用户终端的标识对应的加密密钥,并使用此加密密钥对加密数据成功解密后,响应加密数据中携带的访问请求和/或控制请求,并向用户终端发送响应结果。The smart home appliance is connected to the wireless local area network, receives the identification and encrypted data of the user terminal sent by the user terminal in the wireless local area network, finds the encryption key corresponding to the identification of the user terminal, and uses the encryption key to successfully decrypt the encrypted data, Respond to the access request and/or control request carried in the encrypted data, and send the response result to the user terminal.

其中,智能家电通过第一连接将智能家电的标识和与该用户终端的标识对应的加密密钥发送至用户终端后,可以等接收用户终端发送的认证结束通知之后,再退出softap模式。Wherein, after the smart home appliance sends the identification of the smart home appliance and the encryption key corresponding to the identification of the user terminal to the user terminal through the first connection, it may exit the softap mode after receiving the authentication end notification sent by the user terminal.

图3示出了该实施例的一种具体实施流程图,参照图3所示,该安全访问智能家电的方法可以包括:FIG. 3 shows a specific implementation flowchart of this embodiment. Referring to FIG. 3 , the method for safely accessing a smart home appliance may include:

智能家电进入softap模式,并与用户终端建立第一连接;The smart home appliance enters the softap mode and establishes the first connection with the user terminal;

该智能家电通过第一连接接收到用户终端的密钥请求后,获知用户终端的标识,生成与该用户终端的标识对应的加密密钥,并将该用户终端的标识和与该用户终端的标识对应的加密密钥进行存储,再通过第一连接将智能家电的标识和与该用户终端的标识对应的加密密钥发送至用户终端,接收到用户终端发送的认证结束通知后,退出softap模式;After receiving the key request from the user terminal through the first connection, the smart home appliance learns the identifier of the user terminal, generates an encryption key corresponding to the identifier of the user terminal, and combines the identifier of the user terminal with the identifier of the user terminal. The corresponding encryption key is stored, and then the identification of the smart home appliance and the encryption key corresponding to the identification of the user terminal are sent to the user terminal through the first connection, and after receiving the authentication end notification sent by the user terminal, exit the softap mode;

智能家电接入无线局域网,接收到无线局域网内的用户终端发送的用户终端的标识和加密数据,然后查找与该用户终端的标识对应的加密密钥;找到于该用户终端的标识对应的加密密钥后,使用此加密密钥对加密数据进行解密;成功解密后,响应加密数据中携带的访问请求和/或控制请求,并向用户终端发送响应结果。The smart home appliance is connected to the wireless local area network, receives the identification and encrypted data of the user terminal sent by the user terminal in the wireless local area network, and then searches for the encryption key corresponding to the identification of the user terminal; finds the encryption key corresponding to the identification of the user terminal. After decrypting the encryption key, use the encryption key to decrypt the encrypted data; after successful decryption, respond to the access request and/or control request carried in the encrypted data, and send the response result to the user terminal.

具体地,用户终端的标识是指用户终端的地址信息;智能家电的标识是指智能家电的地址信息。Specifically, the identifier of the user terminal refers to the address information of the user terminal; the identifier of the smart home appliance refers to the address information of the smart home appliance.

根据本发明所提供的智能家电及安全访问智能家电的方法,其中,加密密钥与用户终端的标识可以是一对一的关系,即每个用户终端对应一个专用的加密密钥,如上所述的实施例;也可以是一对多,即多个用户终端共用同一个加密密钥,下面举例说明。According to the smart home appliance and the method for safely accessing the smart home appliance provided by the present invention, the encryption key and the identifier of the user terminal can be in a one-to-one relationship, that is, each user terminal corresponds to a dedicated encryption key, as described above It can also be one-to-many, that is, multiple user terminals share the same encryption key, which is illustrated below with an example.

针对多个用户终端共用同一个加密密钥的情况,本发明提供的智能家电还可以设置为如下组成,该智能家电包括无线通信模块、接收模块、主控模块、存储模块、发送模块,其中,In view of the situation that multiple user terminals share the same encryption key, the smart home appliance provided by the present invention can also be configured as follows. The smart home appliance includes a wireless communication module, a receiving module, a main control module, a storage module, and a sending module, wherein,

无线通信模块,用于进入或退出softap模式,或者,接入无线局域网;The wireless communication module is used to enter or exit the softap mode, or to access the wireless local area network;

接收模块,用于在softap模式下,接收用户终端的密钥请求和用户终端的标识,以及在接入无线局域网的情况下,接收用户终端的标识和加密数据,加密数据中携带对智能家电的访问请求和/或控制请求;The receiving module is used to receive the key request of the user terminal and the identifier of the user terminal in the softap mode, and in the case of accessing the wireless local area network, receive the identifier of the user terminal and encrypted data, and the encrypted data carries the information about the smart home appliance. access requests and/or control requests;

主控模块,用于在softap模式下,在接收模块接收用户终端的密钥请求和用户终端的标识之后,生成通用的加密密钥;在接入无线局域网的情况下,接收模块接收用户终端的标识和加密数据之后,提取通用的加密密钥,并使用通用的加密密钥对加密数据进行解密,以及响应加密数据中携带的对智能家电的访问请求和/或控制请求;The main control module is used to generate a general encryption key after the receiving module receives the key request of the user terminal and the identification of the user terminal in the softap mode; in the case of accessing the wireless local area network, the receiving module receives the user terminal's key After identifying and encrypting the data, extract the general encryption key, use the general encryption key to decrypt the encrypted data, and respond to the access request and/or control request to the smart home appliance carried in the encrypted data;

存储模块,用于在主控模块生成通用的加密密钥后,存储用户终端的标识和通用的加密密钥;The storage module is used to store the identifier of the user terminal and the general encryption key after the main control module generates the general encryption key;

发送模块,用于在softap模式下,在存储模块存储用户终端的标识和通用的加密密钥之后,向用户终端发送通用的加密密钥和智能终端的标识,以及在接入无线局域网的情况下,在主控模块响应加密数据中携带的对智能家电的访问请求和/或控制请求之后,向用户终端发送对加密数据中携带的对智能家电的访问请求和/或控制请求的响应结果。The sending module is used to send the general encryption key and the identifier of the intelligent terminal to the user terminal after the storage module stores the identifier of the user terminal and the general encryption key in the softap mode, and in the case of accessing the wireless local area network , after the main control module responds to the access request and/or control request to the smart home appliance carried in the encrypted data, sends a response result to the access request and/or control request to the smart home appliance carried in the encrypted data to the user terminal.

同样的,接收模块还可以用于在发送模块向用户终端发送智能家电的标识和与通用的加密密钥之后,接收用户终端发来的认证结束通知。Similarly, the receiving module may also be configured to receive an authentication end notification from the user terminal after the sending module sends the identifier of the smart home appliance and the general encryption key to the user terminal.

相适应于上述实施例中的智能家电,本发明还提供了一种安全访问智能家电的方法,该方法包括:Adapting to the smart home appliances in the above embodiments, the present invention also provides a method for safely accessing the smart home appliances, the method comprising:

智能家电进入softap模式,与用户终端建立第一连接;The smart home appliance enters the softap mode and establishes the first connection with the user terminal;

该智能家电通过第一连接接收到用户终端的密钥请求后,其主控模块生成通用的加密密钥,并利用发送模块将通用的加密密钥和智能终端的标识发送至用户终端,退出softap模式;After the smart home appliance receives the key request from the user terminal through the first connection, its main control module generates a general encryption key, and uses the sending module to send the general encryption key and the identifier of the smart terminal to the user terminal, and exits the softap model;

智能家电接入无线局域网,接收到无线局域网内用户终端发送的用户终端的标识和加密数据,提取通用的加密密钥,并使用通用的加密密钥对加密数据成功解密后,响应加密数据中携带的访问请求和/或控制请求,并向用户终端发送响应结果。The smart home appliance is connected to the wireless local area network, receives the identification and encrypted data of the user terminal sent by the user terminal in the wireless local area network, extracts the general encryption key, and uses the general encryption key to successfully decrypt the encrypted data. the access request and/or control request, and send the response result to the user terminal.

其中,该智能家电也可以在将通用的加密密钥和智能终端的标识发送至用户终端之后,等待用户终端发送的认证结束通知,再退出softap模式。Wherein, the smart home appliance may also exit the softap mode after sending the general encryption key and the identifier of the smart terminal to the user terminal, and waiting for an authentication end notification sent by the user terminal.

另外,在这种多个用户终端共用一个通用的加密密钥的情形下,对于访问安全有一定影响,所以可以为该通用的加密密钥设置一定的生命周期,在预定时间后,用户终端需要重新向智能家电申请新的通用的加密密钥。In addition, in the case where multiple user terminals share a common encryption key, it has a certain impact on access security, so a certain life cycle can be set for the common encryption key. After a predetermined time, the user terminal needs to Re-apply for a new general encryption key to the smart home appliance.

本发明还提供了另一种实施例的安全访问智能家电的方法,图4示出了该安全访问智能家电的方法的实施例的流程图,参照图4所示,该方法包括:The present invention also provides a method for safely accessing a smart home appliance according to another embodiment. FIG. 4 shows a flowchart of an embodiment of the method for securely accessing a smart home appliance. Referring to FIG. 4 , the method includes:

用户终端与智能家电建立第一连接;The user terminal establishes a first connection with the smart home appliance;

用户终端通过第一连接向智能家电发送密钥请求信息,并接收和存储智能家电的标识和加密密钥;The user terminal sends key request information to the smart home appliance through the first connection, and receives and stores the identification and encryption key of the smart home appliance;

用户终端接入无线局域网,接收要访问控制的智能家电的标识以及访问请求和/或控制请求后,根据智能家电的标识查找与智能家电的标识对应的加密密钥,并根据与智能家电的标识对应的加密密钥对访问请求和/或控制请求进行加密,形成加密数据;The user terminal accesses the wireless local area network, and after receiving the identification of the smart home appliance to be accessed and controlled and the access request and/or control request, searches for the encryption key corresponding to the identification of the smart home appliance according to the identification of the smart home appliance, and according to the identification of the smart home appliance The corresponding encryption key encrypts the access request and/or the control request to form encrypted data;

通过无线局域网向智能家电发送加密数据和用户终端的标识,并接收智能家电对加密数据的响应结果。The encrypted data and the identifier of the user terminal are sent to the smart home appliance through the wireless local area network, and the response result of the smart home appliance to the encrypted data is received.

其中,密钥请求信息中携带用户终端的标识。Wherein, the key request information carries the identifier of the user terminal.

在本实施例的安全访问智能家电的方法中,其加密密钥可以是多个用户终端通用的加密密钥,也可以是每个用户终端专用的与该用户终端的标识对应的加密密钥。In the method for securely accessing a smart home appliance in this embodiment, the encryption key may be a common encryption key for multiple user terminals, or may be an encryption key dedicated to each user terminal and corresponding to the identifier of the user terminal.

具体地,用户终端在存储智能家电的标识和加密密钥之后,还可以向智能家电发送认证结束通知,并向用户发送完成认证信息,然后再接入无线局域网。Specifically, after storing the identification and encryption key of the smart home appliance, the user terminal can also send an authentication end notification to the smart home appliance, and send authentication completion information to the user, and then access the wireless local area network.

图5示出了该实施例的安全访问智能家电的方法的一种具体实施流程图,参照图5所示,该安全访问智能家电的方法可以为:FIG. 5 shows a specific implementation flowchart of the method for safely accessing a smart home appliance in this embodiment. Referring to FIG. 5 , the method for securely accessing a smart home appliance may be:

用户终端进入认证模式,并与智能家电建立第一连接;The user terminal enters the authentication mode and establishes the first connection with the smart home appliance;

用户终端通过第一连接向智能家电发送密钥请求信息,接收智能家电发送的智能家电的标识和加密密钥,并进行存储;然后向智能家电发送认证结束通知,并向用户发送完成认证信息;The user terminal sends key request information to the smart home appliance through the first connection, receives the identification and encryption key of the smart home appliance sent by the smart home appliance, and stores it; then sends an authentication completion notification to the smart home appliance, and sends the completion authentication information to the user;

用户终端接入无线局域网,接收用户发送的要访问控制的智能家电的标识以及访问请求和/或控制请求后,根据智能家电的标识查找与智能家电的标识对应的加密密钥;找到与智能家电的标识对应的加密密钥后,根据与智能家电的标识对应的加密密钥对访问请求和/或控制请求进行加密,形成加密数据;The user terminal accesses the wireless local area network, and after receiving the identification of the smart home appliance to be accessed and controlled and the access request and/or control request sent by the user, searches for the encryption key corresponding to the identification of the smart home appliance according to the identification of the smart home appliance; After the encryption key corresponding to the identifier of the smart home appliance is encrypted, the access request and/or the control request are encrypted according to the encryption key corresponding to the identifier of the smart home appliance, to form encrypted data;

用户终端通过无线局域网向智能家电发送加密数据和用户终端的标识,并接收智能家电对加密数据中携带的访问请求和/或控制请求的响应结果,然后向用户发送结果通知。The user terminal sends encrypted data and the identifier of the user terminal to the smart home appliance through the wireless local area network, receives the response result of the smart home appliance to the access request and/or control request carried in the encrypted data, and then sends a result notification to the user.

相适应于上述实施例中的安全访问智能家电的方法,本发明还提供了一种安全访问智能家电的装置,图6示出了该安全访问智能家电的装置的一种实施例的模块结构示意图。参照图6所示,该安全访问智能家电的装置包括主控模块、发送模块、接收模块和存储模块,其中,Applicable to the method for safely accessing smart home appliances in the above embodiments, the present invention also provides a device for safely accessing smart home appliances, and FIG. 6 shows a schematic diagram of a module structure of an embodiment of the device for safely accessing smart home appliances . Referring to Figure 6, the device for safely accessing smart home appliances includes a main control module, a sending module, a receiving module and a storage module, wherein,

主控模块,用于与智能家电建立连接,根据智能家电的标识查找与智能家电的标识对应的加密密钥,并根据与智能家电的标识对应的加密密钥对访问请求和/或控制请求进行加密,形成加密数据;The main control module is used to establish a connection with the smart home appliance, find the encryption key corresponding to the identification of the smart home appliance according to the identification of the smart home appliance, and perform an access request and/or control request according to the encryption key corresponding to the identification of the smart home appliance. Encrypt, form encrypted data;

发送模块,用于向智能家电发送密钥请求信息,并在主控模块对访问请求和/或控制请求进行加密后,向智能家电发送加密数据以及该安全访问智能家电的装置的标识;The sending module is used to send the key request information to the smart home appliance, and after the main control module encrypts the access request and/or the control request, sends the encrypted data and the identifier of the device for safely accessing the smart home appliance to the smart home appliance;

接收模块,用于在发送模块向智能家电发送密钥请求信息之后,接收智能家电的标识和加密密钥;并在主控模块与智能家电建立连接之后,接收智能家电的标识和访问请求和/或控制请求;以及在发送模块发送加密数据和该安全访问智能家电的装置的标识之后,智能家电对加密数据的响应结果;The receiving module is used to receive the identification and encryption key of the smart home appliance after the sending module sends the key request information to the smart home appliance; and after the main control module establishes a connection with the smart home appliance, receive the identification and access request of the smart home appliance and/or the smart home appliance. or control request; and after the sending module sends the encrypted data and the identifier of the device that securely accesses the smart home appliance, the smart home appliance responds to the encrypted data;

存储模块,用于在接收模块接收到智能家电的标识和与智能家电的标识对应的加密密钥之后,存储智能家电的标识和与智能家电的标识对应的加密密钥。The storage module is used for storing the identification of the smart home appliance and the encryption key corresponding to the identification of the smart home appliance after the receiving module receives the identification of the smart home appliance and the encryption key corresponding to the identification of the smart home appliance.

另外,发送模块还可以用于在接收模块接收智能家电的标识和加密密钥之后,向智能家电发送认证结束通知,以及向用户发送完成认证信息。In addition, the sending module may also be configured to send an authentication completion notification to the smart home appliance and send authentication completion information to the user after the receiving module receives the identification and encryption key of the smart home appliance.

本发明基于智能家电普遍支持的softap技术的特性,进行用户身份认证,只需用户简单的操作一下智能家电即可,为安全地访问智能家电提供了便利。本发明的核心包含认证流程和认证通过后的控制流程:通过softap技术完成交换加密密钥的过程,从而完成用户认证;基于用户认证过程中交换的加密密钥进行加密通信,从而组成了完整的安全访问智能家电的流程。Based on the characteristics of the softap technology generally supported by smart home appliances, the present invention performs user identity authentication, and only needs the user to simply operate the smart home appliance, thereby providing convenience for safe access to the smart home appliance. The core of the present invention includes an authentication process and a control process after the authentication is passed: the process of exchanging encryption keys is completed through softap technology, thereby completing user authentication; based on the encryption keys exchanged in the user authentication process, encrypted communication is performed, thereby forming a complete Process for secure access to smart appliances.

根据本发明所提供的智能家电、安全访问智能家电的方法和装置,无需额外架设认证服务器,在局域网内即可单独完成认证,提高了安全访问的易用性;认证信息动态生成,智能家电也可以清除已有的认证信息,提高了安全性和灵活性;基于成熟的softap技术,利于推广,并且无需增加额外的硬件成本;而且设备密钥粒度细到单个用户终端,更加容易进行安全控制。According to the smart home appliance and the method and device for safely accessing the smart home appliance provided by the present invention, the authentication can be completed independently in the local area network without setting up an additional authentication server, which improves the usability of secure access; the authentication information is dynamically generated, and the smart home appliance also Existing authentication information can be cleared, improving security and flexibility; based on mature softap technology, it is conducive to promotion, and no additional hardware costs are required; and the granularity of the device key is as fine as a single user terminal, making it easier to perform security control.

上面描述的内容可以单独地或者以各种方式组合起来实施,而这些变型方式都在本发明的保护范围之内。The above-described contents can be implemented individually or in various combinations, and these modifications are all within the protection scope of the present invention.

本领域普通技术人员可以理解上述方法中的全部或部分步骤可通过程序来指令相关硬件完成,所述程序可以存储于计算机可读存储介质中,如只读存储器、磁盘或光盘等。可选地,上述实施例的全部或部分步骤也可以使用一个或多个集成电路来实现,相应地,上述实施例中的各模块/单元可以采用硬件的形式实现,也可以采用软件功能模块的形式实现。本发明不限制于任何特定形式的硬件和软件的结合。Those skilled in the art can understand that all or part of the steps in the above method can be completed by instructing relevant hardware through a program, and the program can be stored in a computer-readable storage medium, such as a read-only memory, a magnetic disk or an optical disk. Optionally, all or part of the steps in the above embodiments may also be implemented by using one or more integrated circuits. Correspondingly, each module/unit in the above embodiments may be implemented in the form of hardware, or may be implemented in the form of software function modules. form realization. The present invention is not limited to any particular form of combination of hardware and software.

需要说明的是,在本文中,诸如第一和第二等之类的关系术语仅仅用来将一个实体或者操作与另一个实体或操作区分开来,而不一定要求或者暗示这些实体或操作之间存在任何这种实际的关系或者顺序。而且,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包含一系列要素的过程、方法、物品或者设备不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、物品或者设备所固有的要素。在没有更多限制的情况下,由语句“包括一个…”限定的要素,并不排除在包括所述要素的过程、方法、物品或者设备中还存在另外的相同要素。It should be noted that, in this document, relational terms such as first and second are used only to distinguish one entity or operation from another entity or operation, and do not necessarily require or imply any relationship between these entities or operations. any such actual relationship or sequence exists. Moreover, the terms "comprising", "comprising" or any other variation thereof are intended to encompass non-exclusive inclusion such that a process, method, article or device comprising a list of elements includes not only those elements, but also includes not explicitly listed or other elements inherent to such a process, method, article or apparatus. Without further limitation, an element qualified by the phrase "comprising a..." does not preclude the presence of additional identical elements in a process, method, article or apparatus that includes the element.

最后应说明的是:以上实施例仅用以说明本发明的技术方案,而非对其限制。尽管参照前述实施例对本发明进行了详细的说明,本领域的普通技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本发明各实施例技术方案的精神和范围。Finally, it should be noted that the above embodiments are only used to illustrate the technical solutions of the present invention, but not to limit them. Although the present invention has been described in detail with reference to the foregoing embodiments, those of ordinary skill in the art should understand that: it is still possible to modify the technical solutions described in the foregoing embodiments, or perform equivalent replacements to some of the technical features; and these Modifications or substitutions do not make the essence of the corresponding technical solutions deviate from the spirit and scope of the technical solutions of the embodiments of the present invention.

Claims (9)

1. An intelligent household appliance is characterized by comprising a wireless communication module, a receiving module, a main control module, a storage module and a sending module, wherein,
the wireless communication module is used for wireless communication and supports a virtual access softap mode;
the receiving module is used for receiving a key request of a user terminal and an identifier of the user terminal in a softap mode, and receiving the identifier of the user terminal and encrypted data under the condition of accessing a wireless local area network, wherein the encrypted data carries an access request and/or a control request for the intelligent household appliance;
the main control module is used for generating an encryption key corresponding to the identifier of the user terminal in a softap mode; under the condition of accessing a wireless local area network, searching the encryption key corresponding to the identifier of the user terminal, decrypting the encrypted data by using the encryption key corresponding to the identifier of the user terminal, and responding to an access request and/or a control request carried in the encrypted data for the intelligent household appliance;
the storage module is used for storing the identifier of the user terminal and the encryption key corresponding to the identifier of the user terminal;
the sending module is configured to send, to the user terminal in a softap mode, an identifier of the intelligent appliance and an encryption key corresponding to the identifier of the user terminal, and send, to the user terminal, a response result to an access request and/or a control request for the intelligent appliance, which is carried in the encrypted data, under a condition that a wireless local area network is accessed;
wherein the encryption key is a dedicated encryption key corresponding to the user terminal identifier one to one.
2. The intelligent appliance according to claim 1, wherein the identifier of the user terminal is address information of the user terminal, and the identifier of the intelligent appliance is address information of the intelligent appliance.
3. A method for securely accessing a smart appliance, the method comprising:
the intelligent household appliance enters a softap mode and establishes a first connection with a user terminal;
acquiring the identifier of the user terminal after receiving a key request of the user terminal through the first connection, generating and storing an encryption key corresponding to the identifier of the user terminal, sending the identifier of the intelligent household appliance and the encryption key corresponding to the identifier of the user terminal to the user terminal through the first connection, and exiting from a softap mode;
the intelligent household appliance is accessed to a wireless local area network, receives the identification and the encrypted data of the user terminal sent by the user terminal in the wireless local area network, finds out an encrypted key corresponding to the identification of the user terminal, responds to an access request and/or a control request carried in the encrypted data after the encrypted data is successfully decrypted by using the encrypted key, and sends a response result to the user terminal;
wherein the encryption key is a dedicated encryption key corresponding to the user terminal identifier one to one.
4. The method for securely accessing an intelligent appliance according to claim 3, wherein the identifier of the user terminal refers to address information of the user terminal; the identification of the intelligent household appliance refers to address information of the intelligent household appliance.
5. An intelligent household appliance is characterized by comprising a wireless communication module, a receiving module, a main control module, a storage module and a sending module, wherein,
the wireless communication module is used for entering or exiting a softap mode or accessing a wireless local area network;
the receiving module is used for receiving a key request of a user terminal and an identifier of the user terminal in a softap mode, and receiving the identifier of the user terminal and encrypted data under the condition of accessing a wireless local area network, wherein the encrypted data carries an access request and/or a control request for the intelligent household appliance;
the main control module is used for generating a general encryption key in a softap mode; under the condition of accessing a wireless local area network, extracting the general encryption key and decrypting the encrypted data by using the general encryption key;
the storage module is used for storing the identification of the user terminal and the universal encryption key;
the sending module is configured to send the general encryption key and the identifier of the intelligent terminal to the user terminal in a softap mode, and send a response result to the user terminal about an access request and/or a control request to the intelligent appliance, where the response result is carried in the encrypted data, when the user terminal is accessed to a wireless local area network;
the universal encryption key is a key commonly used by the identifications of a plurality of user terminals, and a life cycle is set for the universal encryption key.
6. A method for securely accessing a smart appliance, the method comprising:
the intelligent household appliance enters a softap mode and establishes a first connection with a user terminal;
after a key request of the user terminal is received through the first connection, a general encryption key is generated, the general encryption key and the identification of the intelligent terminal are sent to the user terminal, and the softap mode is exited;
the intelligent household appliance is accessed to a wireless local area network, receives the identification and the encrypted data of the user terminal sent by the user terminal in the wireless local area network, extracts the general encryption key, responds to an access request and/or a control request carried in the encrypted data after the encrypted data is successfully decrypted by using the general encryption key, and sends a response result to the user terminal;
the universal encryption key is a key commonly used by the identifications of a plurality of user terminals, and a life cycle is set for the universal encryption key.
7. A method for securely accessing a smart appliance, the method comprising:
the method comprises the steps that a first connection is established between a user terminal and an intelligent household appliance;
the user terminal sends key request information to the intelligent household appliance through the first connection, and receives and stores the identification and the encryption key of the intelligent household appliance;
the user terminal accesses a wireless local area network, searches an encryption key corresponding to the identification of the intelligent household appliance according to the identification of the intelligent household appliance after receiving the identification of the intelligent household appliance to be accessed and an access request and/or a control request, and encrypts the access request and/or the control request according to the encryption key corresponding to the identification of the intelligent household appliance to form encrypted data;
sending the encrypted data and the identification of the user terminal to the intelligent household appliance through the wireless local area network, and receiving a response result of the intelligent household appliance to the encrypted data;
wherein the encryption key is a dedicated encryption key corresponding to the user terminal identifier one to one.
8. The method for securely accessing an intelligent appliance according to claim 7, wherein the key request message carries an identifier of the user terminal.
9. The device for safely accessing the intelligent household electrical appliance is characterized by comprising a main control module, a sending module, a receiving module and a storage module, wherein,
the main control module is used for establishing connection with the intelligent household appliance, searching an encryption key corresponding to the identification of the intelligent household appliance according to the identification of the intelligent household appliance, and encrypting an access request and/or a control request according to the encryption key corresponding to the identification of the intelligent household appliance to form encrypted data;
the sending module is used for sending key request information, the encrypted data and the identifier of the device for safely accessing the intelligent household appliance to the intelligent household appliance;
the receiving module is used for receiving the identification of the intelligent household appliance, the access request and/or the control request, the encryption key and the response result of the intelligent household appliance to the encrypted data;
the storage module is used for storing the identification of the intelligent household appliance and an encryption key corresponding to the identification of the intelligent household appliance;
the encryption key is a special encryption key corresponding to the identification of the user terminal one by one.
CN201610875477.3A 2016-09-30 2016-09-30 Intelligent household appliance and method and device for safely accessing intelligent household appliance Active CN106658488B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610875477.3A CN106658488B (en) 2016-09-30 2016-09-30 Intelligent household appliance and method and device for safely accessing intelligent household appliance

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610875477.3A CN106658488B (en) 2016-09-30 2016-09-30 Intelligent household appliance and method and device for safely accessing intelligent household appliance

Publications (2)

Publication Number Publication Date
CN106658488A CN106658488A (en) 2017-05-10
CN106658488B true CN106658488B (en) 2020-09-22

Family

ID=58855018

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610875477.3A Active CN106658488B (en) 2016-09-30 2016-09-30 Intelligent household appliance and method and device for safely accessing intelligent household appliance

Country Status (1)

Country Link
CN (1) CN106658488B (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107205094B (en) * 2017-06-29 2019-05-07 珠海格力电器股份有限公司 Device control method and device, electronic device and terminal
CN109547303B (en) * 2018-11-21 2021-06-25 北京华大智宝电子系统有限公司 Control method and related equipment
CN110149622B (en) * 2019-06-06 2022-10-21 海尔优家智能科技(北京)有限公司 Intelligent household appliance control method and device
CN111787514B (en) * 2020-06-28 2024-03-22 海尔优家智能科技(北京)有限公司 Method and device for acquiring equipment control data, storage medium and electronic device
CN115474190A (en) * 2022-08-30 2022-12-13 海尔优家智能科技(北京)有限公司 Access method, device, equipment and storage medium of Bluetooth intelligent equipment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104994527A (en) * 2015-06-30 2015-10-21 青岛海尔科技有限公司 Method for intelligent household electrical appliance to access router, intelligent household electrical appliance and mobile terminal
CN105407450A (en) * 2015-10-21 2016-03-16 珠海奔图电子有限公司 Intelligent equipment, electronic device, and network connection method based on near-field communication
CN105491034A (en) * 2015-11-30 2016-04-13 青岛海尔智能家电科技有限公司 Method for establishing connection with terminal and terminal authentication method and apparatus
CN105516103A (en) * 2015-11-30 2016-04-20 青岛海尔智能家电科技有限公司 Method, device and system for binding intelligent household electrical appliances
CN105553932A (en) * 2015-11-30 2016-05-04 青岛海尔智能家电科技有限公司 Method, device and system of remote control safety binding of intelligent home appliance

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104994527A (en) * 2015-06-30 2015-10-21 青岛海尔科技有限公司 Method for intelligent household electrical appliance to access router, intelligent household electrical appliance and mobile terminal
CN105407450A (en) * 2015-10-21 2016-03-16 珠海奔图电子有限公司 Intelligent equipment, electronic device, and network connection method based on near-field communication
CN105491034A (en) * 2015-11-30 2016-04-13 青岛海尔智能家电科技有限公司 Method for establishing connection with terminal and terminal authentication method and apparatus
CN105516103A (en) * 2015-11-30 2016-04-20 青岛海尔智能家电科技有限公司 Method, device and system for binding intelligent household electrical appliances
CN105553932A (en) * 2015-11-30 2016-05-04 青岛海尔智能家电科技有限公司 Method, device and system of remote control safety binding of intelligent home appliance

Also Published As

Publication number Publication date
CN106658488A (en) 2017-05-10

Similar Documents

Publication Publication Date Title
US11329965B2 (en) Method for dynamic encryption and signing, terminal, and server
CN106452999B (en) Intelligent household appliance and method and device for safely accessing intelligent household appliance
KR101941049B1 (en) Method and system for encrypted communications
CN113055867A (en) Method and device for auxiliary network distribution of terminal and electronic equipment
CN106658488B (en) Intelligent household appliance and method and device for safely accessing intelligent household appliance
CA2913456C (en) Communication control apparatus, authentication device, central control apparatus and communication system
WO2013182154A1 (en) Method, system and terminal for encrypting/decrypting application program on communication terminal
CN110235424A (en) For providing the device and method with managing security information in a communications system
CN106921963A (en) A kind of smart machine accesses the method and device of WLAN
US8572698B1 (en) Connecting a legacy wireless device to a WPS-enabled access point
WO2018000834A1 (en) Wifi hotspot information modification method and device
WO2011106956A1 (en) Mobile terminal and a data-share method for the mobile terminal
CN108512846A (en) Mutual authentication method and device between a kind of terminal and server
CN104205891A (en) Virtual sim card cloud platform
KR20160078475A (en) Key configuration method, system and apparatus
CN107113609A (en) The subscriber identity module provider apparatus and method that OTA for subscriber identity module container is arranged
WO2016015509A1 (en) Method and device for terminal authentication for use in mobile communication system
CN106603508A (en) Wireless encryption communication method, intelligent household electrical appliance, server, and terminal
CN114760112B (en) Wireless local area network-oriented intelligent home equipment networking method, system, equipment and storage medium
CN109413648B (en) Access control method, terminal, smart card, background server and storage medium
WO2016015510A1 (en) Method and device for terminal authentication for use in mobile communication system
CN105791359A (en) IoT system and data interaction method
CN108600176A (en) A kind of intelligent terminal safety certifying method, equipment, server and system
CN102612030B (en) Wireless access collocation method and system, radio reception device, terminal
CN107950003A (en) Dual user certification

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20210113

Address after: Room 601-606, 6 / F, Pacific International Building, 106 Zhichun Road, Haidian District, Beijing 100086

Patentee after: HAIER UPLUS INTELLIGENT TECHNOLOGY (BEIJING) Co.,Ltd.

Patentee after: Haier Smart Home Co., Ltd.

Address before: Room 601-606, 6 / F, Pacific International Building, 106 Zhichun Road, Haidian District, Beijing 100086

Patentee before: HAIER UPLUS INTELLIGENT TECHNOLOGY (BEIJING) Co.,Ltd.