CN115822384A - A kind of intelligent lock management system and using method - Google Patents

Abstract

The invention provides an intelligent lock management system, and belongs to the field of intelligent electronic products. The intelligent lock is used for sending self identity information LID to the intelligent electronic key; the intelligent electronic key is used for acquiring the identity information LID of the intelligent lock, encrypting the identity information LID of the intelligent lock, the identity information KID of the intelligent electronic key and the unlocking request to form first encryption information and sending the first encryption information to the intelligent terminal; the intelligent terminal is used for receiving first encryption information sent by the intelligent electronic key, encrypting the identity information UID of the staff and the first encryption information to form second encryption information, and sending the second encryption information to the data management center; and the data management center is used for receiving the second encrypted information sent by the intelligent terminal, generating a verification code and a random number R, obtaining an intelligent electronic key ciphertext c and an intelligent lock data integrity tag t based on the verification code and the random number R, and obtaining third encrypted information. The invention carries out integrity protection on the unlocking instruction data and the unlocking state data, and can resist illegal tampering and counterfeiting and data replay attack.

Description

A kind of intelligent lock management system and using method

technical field

The invention belongs to the technical field of intelligent electronic products, and in particular relates to an intelligent lock management system and a use method.

Background technique

The statements in this section merely provide background information related to the present invention and do not necessarily constitute prior art.

Currently, various network infrastructures are spread across every corner of the city. Many critical facilities require regular maintenance. Some network connection points, outdoor cabinets, outdoor testing equipment, etc. require safety requirements such as moisture-proof, fire-proof, and anti-theft. They are usually locked in a safe box or a special room. The door or box door is locked, and maintenance personnel need to unlock it to enter the work area. .

The inventor found that traditional locks are inconvenient to manage, especially locks using metal keys. If it is necessary to temporarily replace the staff, the temporary staff who accept the task need to get the key before they can unlock the lock. The collection and return of keys need to be recorded manually and are prone to errors. If one lock is allowed to correspond to multiple keys, the management of the keys will become more complicated, and it will be difficult to find the responsible person when an accident occurs. Moreover, once a key is lost, the lock needs to be replaced, otherwise it will bring safety hazards; if A lock corresponds to a key. If the person holding the key is temporarily busy, it will be difficult to unlock the lock. When someone temporarily finds someone to replace the person holding the key to work, the work process will often be delayed.

Even if fingerprint locks are used, there are still many problems, including the following problems: (1) There is no record of unlocking behavior, and it is not known who opened which lock at what time; (2) There is no record of closing time, and the actual work of the staff is not known (3) If multiple people can open the same fingerprint lock, once the inspected equipment is damaged, it will be difficult to pursue responsibility; (4) It is inconvenient for emergency treatment. For example, a problem with a piece of equipment requires urgent repairs, but no repair person who can unlock the lock is nearby.

In the existing above-mentioned business, usually one maintenance personnel can open multiple locks, and the same lock can also be opened by multiple maintenance personnel. This complicated situation has brought many problems to managers, and some companies try to solve these problems through auxiliary means, such as adding video surveillance, so that maintenance personnel can fully grasp the unlocking, locking and actual working conditions. However, the cost of the video surveillance system is very high, and a lot of storage devices and service platforms are needed just to maintain the video surveillance data. When the number of locks is large (such as thousands or even more), a cheaper and more effective solution is required.

Contents of the invention

In order to overcome the shortcomings of the above-mentioned prior art, the present invention provides an intelligent lock management system and a method of use. The intelligent lock and the intelligent electronic key can be flexibly matched between the user, the intelligent electronic key and the intelligent lock through remote authorization. It is very convenient in emergency situations; the integrity protection of unlock command data and switch lock status data can resist illegal tampering and forgery, and the use of random numbers can resist data replay attacks and improve the security in use; data The management center can know when and who uses which smart electronic key to open or close which smart lock by recording the relevant information of unlocking and closing, which increases the controllability and traceability of the use process.

In order to achieve the above purpose, one or more embodiments of the present invention provide the following technical solutions:

The first aspect of the present invention provides an intelligent lock management system.

An intelligent lock management system, including an intelligent lock, an intelligent electronic key, an intelligent terminal and a data management center, wherein:

Smart lock, which is used to communicate with the smart electronic key, and send its own identity information LID to the smart electronic key; receive the verification code code, random number R and third encrypted information sent by the smart electronic key, based on the verification code code 1. Random number R and the key LK corresponding to the identity information LID of the smart lock, generate verification encrypted information t ^' , compare t ^' with t in the third encrypted information, and if the two are the same, perform the unlocking action;

The smart electronic key is used to communicate with the smart lock, obtain the identity information LID of the smart lock, and encrypt the identity information LID of the smart lock, the identity information KID of the smart electronic key and the unlocking request to form the first encrypted information. The first encrypted information is sent to the smart terminal; it is also used to receive the verification code code and the third encrypted information sent by the smart terminal, decrypt the third encrypted information, obtain the random number R, and combine the verification code code, the random number R and the third The encrypted information is sent to the smart lock;

An intelligent terminal, which is used to receive the first encrypted information sent by the smart electronic key, encrypt the staff identity information UID and the first encrypted information to form the second encrypted information, and send the second encrypted information to the data management center; It is used to receive the verification code code and the third encrypted information sent by the data management center, and send the verification code code and the third encrypted information to the smart electronic key;

The data management center is used to receive the second encrypted information sent by the smart terminal, generate a verification code code and a random number R, and send the verification code code to the smart terminal; based on the verification code code and the random number R, obtain the smart electronic key ciphertext c and the smart lock data integrity tag t, obtain the third encrypted information based on c and t, and send the third encrypted information to the smart terminal.

Preferably, the data management center encrypts the random number R with the key KK corresponding to the K I D to obtain the ciphertext c; edit the unlock command OPEN, and perform the verification code, random number R, unlock command OPEN and the key LK corresponding to the L I D Encrypt to get the data integrity label t.

Preferably, the data management center is also used for judging whether the staff in the received second encrypted information holds the smart electronic key KID based on the database of the corresponding relationship between the staff, the smart electronic key and the smart lock, and judging whether the smart key Whether the electronic key KI D has the authority to open the smart lock L I D.

preferred,

The smart electronic key is also used to send a lock command to the smart lock;

The smart lock is also used to receive the lock command sent by the smart electronic key, and execute the lock operation;

or,

Described intelligent lock is also used for detecting lock-off state or unlock state, after unlocking success and closing lock successfully, unlock success information, lock success information, intelligent lock identity information L I D are sent to intelligent electronic key;

The smart electronic key is also used to receive the unlocking success information, lock closing success information, and smart lock identity information L I D sent by the smart lock, and send the smart electronic key identity information KID, unlocking success information, lock closing success information, and smart lock identity information. The information L I D is sent to the smart terminal;

The smart terminal is also used to receive the smart electronic key identity information KID, unlock success information, lock success information, and smart lock identity information LID sent by the smart electronic key, and store the staff identity information UID, smart electronic key identity information KID, The unlocking success information, the locking success information, and the smart lock identity information L I D are sent to the data management center;

The data management center is also used to receive staff identity information U I D, intelligent electronic key identity information KID, unlock success information, lock success information, smart lock identity information L I D, and transfer the data management center current time T, staff identity information The U I D, the smart electronic key identity information KID, the unlock success information, the lock success information, and the smart lock identity information L I D are saved.

Preferably, the smart lock includes:

A storage module, which is used to store key data, including the lock's identity LID, the data encryption key LK shared between the lock and the data management center, and the record data for unlocking and closing the lock;

A communication module, which is used to communicate with the smart electronic key connected to the smart lock, receives the unlock instruction, lock instruction, verification code code, random number R and the third encrypted information sent by the smart electronic key, and converts the unlock instruction and lock instruction , the verification code code, the random number R and the third encrypted information are sent to the calculation module;

The calculation module is used to receive the unlock instruction, verification code code, random number R and third encrypted information sent by the communication module, obtain the data encryption key LK in the storage module and execute the data integrity protection algorithm MAC, based on the verification code code , random number R and key LK, generate verification encrypted information t ^' , compare t ^' with t in the third encrypted information, if the two are the same, send an unlock command to the mechanical control module; it is also used to receive the information sent by the communication module lock command, send the lock command to the mechanical control module;

The mechanical control module is used to receive the unlocking instruction and the locking instruction sent by the calculation module, and execute the unlocking operation and the locking operation based on the unlocking instruction and the locking instruction.

preferred,

The calculation module is also used to obtain the successful unlocking information and the successful locking information of the mechanical control module, and send the successful unlocking information and successful locking information to the communication module;

The communication module is also used to receive the successful unlocking information and successful locking information sent by the computing module, and send the successful unlocking information, successful locking information and the ID LID of the smart lock to the smart electronic key.

Preferably, the smart electronic key includes:

A storage module, which is used to store key data, including the smart electronic key ID KID and the built-in key KK of the key;

For the smart terminal communication module, it is used to receive the first encrypted information sent by the computing module and send it to the smart terminal, receive the verification code code and the third encrypted information sent by the smart terminal, and send the verification code code and the third encrypted information to the computing module module;

The calculation module is used to realize data decryption, receives the verification code code and the third encrypted information sent by the communication module of the intelligent terminal, decrypts the third encrypted information, obtains the random number R, and converts the unlocking instruction, the locking instruction, the verification code code, random number R and the third encrypted information are sent to the communication module for the lock; it is also used for data encryption, receiving the ID LID of the smart lock sent by the communication module for the lock, and obtaining the ID KID of the smart electronic key of the storage module, Encrypt the identity information LID of the smart lock, the identity information KID of the smart electronic key, and the unlocking request to form the first encrypted information, and send the first encrypted information to the communication module of the intelligent terminal; receive the unlocking success information sent by the communication module of the lock, Close the lock successfully information and the identity LID of the smart lock, and send it to the communication module of the smart terminal;

The lock-to-lock communication module is used to obtain the unlocking instruction, the locking instruction, the verification code code, the random number R and the third encrypted information sent by the computing module, and the unlocking instruction, the locking instruction, the verification code code, the random number R and the third encryption information 3. Send the encrypted information to the smart lock; receive the unlocking success information, the locking success information and the smart lock ID LID sent by the smart lock and send them to the computing module.

or,

The smart electronic key also includes:

A power supply module, which is used to supply power to the smart electronic key;

A power output module, which is used to provide power supply for the smart lock;

The signal display module is used to represent the current processing result through different photoelectric signals.

The second aspect of the present invention provides a method for using an intelligent lock management system.

A method for using an intelligent lock management system, including an unlocking method, the unlocking method comprising the following steps:

The smart electronic key obtains the identity information LID of the smart lock, encrypts the identity information LID of the smart lock, the identity information KID of the smart electronic key, and the unlock request to form the first encrypted information, and sends it to the smart terminal;

The smart terminal receives the first encrypted information sent by the smart electronic key, encrypts the staff identity information UID and the first encrypted information to form the second encrypted information, and sends the second encrypted information to the data management center;

The data management center receives the second encrypted information sent by the smart terminal, generates a verification code code and a random number R, and sends the verification code code to the smart terminal; based on the verification code code and random number R, the smart electronic key ciphertext c and the smart lock are obtained Data integrity label t, obtain the third encrypted information based on c and t, and send the third encrypted information to the smart terminal;

The smart terminal receives the verification code code and the third encrypted information sent by the data management center, and sends the verification code code and the third encrypted information to the smart electronic key;

The smart electronic key receives the verification code code and the third encrypted information sent by the smart terminal, decrypts the third encrypted information, obtains the random number R, and sends the verification code code, the random number R and the third encrypted information to the smart lock;

The smart lock receives the verification code code, random number R and third encrypted information sent by the smart electronic key, and generates verification encrypted information t ^' based on the verification code code, random number R and the key LK corresponding to the identity information LID of the smart lock. If t ^' and t in the third encrypted information are the same, the unlocking action is performed.

Preferably, the following steps are also included:

After the smart lock is successfully unlocked, the smart lock identity information LID of the successful unlocking information is sent to the smart electronic key;

The smart electronic key receives the unlocking success information and the smart lock identity information L I D sent by the smart lock, and sends the smart electronic key identity information KID, unlocking success information, and smart lock identity information L I D to the smart terminal;

The smart terminal receives the smart electronic key identity information KID, unlocking success information, and smart lock identity information L I D sent by the smart electronic key, and sends the staff identity information U I D, smart electronic key identity information KID, unlocking success information, and smart lock identity information L I D sent to the data management center;

The data management center receives the staff identity information U I D, the smart electronic key identity information KID, the unlock success information, and the smart lock identity information L I D, and sends the data management center the current time T, the staff identity information U I D, the smart electronic key identity information KID, The unlocking success information and the smart lock identity information L I D are saved.

Preferably, a locking method is also included, and the locking method includes the following steps:

The smart electronic key sends a lock command to the smart lock;

The smart lock receives the lock command sent by the smart electronic key and executes the lock operation;

After the lock is completed, the smart lock detects the lock status, and sends the lock success information and the smart lock identity information L I D to the smart electronic key;

The smart electronic key receives the successful closing information and the identity information L I D of the smart lock sent by the smart lock, and sends the identity information KID of the smart electronic key, the successful closing information, and the identity information L I D of the smart lock to the smart terminal;

The smart terminal receives the smart electronic key identity information KID, successful locking information, and smart lock identity information L I D sent by the smart electronic key, and sends the staff identity information U I D, smart electronic key identity information KID, unlocking success information, and locking success information , The smart lock identity information LID is sent to the data management center;

The data management center receives the staff identity information U I D, the smart electronic key identity information KID, the lock success information, and the smart lock identity information L I D, and sends the data management center the current time T, the staff identity information U I D, and the smart electronic key identity information KID , lock success information, smart lock identity information L I D to save;

or,

The staff closes the smart lock by external force, so that the latch inside the smart lock returns to its original position;

The smart lock detects the lock status, and sends the lock success information and the smart lock identity information L I D to the smart electronic key.

The above one or more technical solutions have the following beneficial effects:

1. The present invention provides a smart lock management system and a method of use. The smart lock and the smart electronic key can be remotely authorized to flexibly match the user, the smart electronic key and the smart lock, which is very convenient in emergency situations; Integrity protection of unlock instruction data and switch lock status data can resist illegal tampering and forgery, and the use of random numbers can resist data replay attacks and improve the security in use; the data management center records the unlocking and closing The relevant information of the lock can know when and who uses which smart electronic key to open or close which smart lock, which increases the controllability and traceability of the use process.

Two. the intelligent electronic key of the present invention has the following characteristics: different users can use the same intelligent electronic key, but they can only control those intelligent locks they have authorized; the same intelligent electronic key can control multiple intelligent locks; when unlocking, The smart electronic key that needs to be authorized and the smart phone, if any one does not match, the unlocking process cannot be completed; after each unlock, the smart electronic key will send the identity information of the smart lock, the identity information of the smart electronic key, and the unlock/close success signal Such information is sent to the data management center through the bound smart phone; the data management center records the relevant information of unlocking and closing the lock to know when and who uses which smart electronic key to open or close which smart lock and other information. These functions are not available in traditional locks and fingerprint combination locks. The key technology used in the present invention is to protect the integrity of the unlocking command data and the switch lock state data, which can resist illegal tampering and forgery; through the use of random numbers, it can resist data replay attacks.

Advantages of additional aspects of the invention will be set forth in the description which follows, and in part will be obvious from the description, or may be learned by practice of the invention.

Description of drawings

The accompanying drawings constituting a part of the present invention are used to provide a further understanding of the present invention, and the schematic embodiments of the present invention and their descriptions are used to explain the present invention and do not constitute improper limitations to the present invention.

Fig. 1 is a schematic structural diagram of an intelligent lock.

Fig. 2 is a schematic structural diagram of an intelligent electronic key.

Fig. 3 is a schematic structural diagram of an intelligent lock management system.

Detailed ways

It should be noted that the following detailed description is exemplary and intended to provide further explanation of the present invention. Unless defined otherwise, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs.

It should be noted that the terminology used here is only for describing specific embodiments, and is not intended to limit exemplary embodiments according to the present invention.

In the case of no conflict, the embodiments and the features in the embodiments of the present invention can be combined with each other.

Invention concept of the present invention:

The invention belongs to the technical field of electronic products, and relates to the combination of electronic technology and cutting-edge information technology, and the application scene of applying modern cryptography technology to an intelligent lock controlled by an electronic chip. When unlocking the smart lock, the smart electronic key first needs to send an unlock request to the data management platform. The request is to obtain the identity of the smart lock after the smart electronic key is connected to the smart lock, together with the identity of the smart electronic key itself, use the data Integrity protection measures are transmitted to the background data management center through the smartphone.

The unlock command is generated by the data management center, which binds the smart unlock key and the mobile phone number of the staff, uses data integrity protection measures, and transmits it to the smart electronic key through the smart phone, and the smart phone transmits other information to the electronic key at the same time; the smart electronic key Send the unlock command together with other data sent by the smart phone to the smart lock; after the smart lock receives the data and performs certain calculations and verifications, it pulls a small spring latch through a micro motor, and the smart lock is under the action of the spring force. automatically turned on.

The present invention can solve the following problems:

(1) The problem of key loss.

In daily life, key loss incidents often occur. For traditional metal locks, to allow multiple staff to have the right to unlock, multiple keys need to be allocated. However, once a key is lost, it faces the security risk of the lock being opened illegally. Whether a lost key is lost somewhere, dropped, or stolen, it represents a potential security risk. For lock control areas with relatively high safety requirements, the lock cylinder generally needs to be replaced after a key loss event occurs, and then the key is distributed to all personnel who can open the lock. Lock cylinders are easy to replace, but distributing the keys to each lock picker may not be very convenient.

The lock system designed by the present invention does not have this problem. Even if the smart key is taken away by others, no lock can be opened without the permission of the data management center. Therefore, the loss of the smart electronic key does not pose a serious security risk. If someone steals the smart electronic key and the smart phone of the staff, they cannot log in to the smart phone software management system without the staff password, cannot communicate with the data management center, cannot obtain authorization from the data center, and cannot use the smart electronic key , so the smart lock cannot be controlled.

(2) Malicious absenteeism.

With traditional locks, it is difficult to verify that workers have arrived at the job site. Of course, evidence can be found with the help of roadside surveillance video, but unless there is a criminal incident, this kind of evidence is difficult to obtain. Therefore, it is actually impossible to confirm whether the staff arrives at the work site to unlock and carry out corresponding inspection work, and it is also impossible to ensure the quality of the inspection work, unless there is an emergency, such as equipment that needs to be overhauled.

The invention very conveniently solves the monitoring problem of employee absenteeism.

(3) Private OEM problem.

For traditional locks, the staff can entrust others to unlock the lock without permission, and close the lock after completing the maintenance work without being discovered by the enterprise management personnel.

However, it is difficult for the smart lock designed by the present invention to produce this kind of foundry event, unless the client also gives his smart phone to the client. That's unlikely to happen in today's age of increasing reliance on smartphones. If the client uses his own mobile phone to log in to the account of the client in the data management center, and the client tells the client when he receives the SMS verification code, he can still do the contract privately. This problem can be limited by means of management, and it can also be technically realized through the interaction between SMS and mobile terminal APP, that is, the SMS verification code is automatically transferred to the mobile APP without manual input. In general applications, the need for this technique is not strong.

(4) Misreporting the workload problem.

In the case of traditional locks, workers may have worked for short periods of time but falsely claimed to have longer periods of time. Managers have no way of knowing how long workers have actually been working since unlocking.

The system of the present invention can solve this problem, because both the unlocking time and the closing time need to be connected to the data management center, so that the data management center clearly records the working hours. During the work process, taking pictures or video forensics through the mobile terminal APP can also ensure the quality of work. However, the problem of maliciously altering videos or photos cannot be ruled out. The specific work quality of the staff is not the focus of this system. Forensic information can be used as an auxiliary means to trace the source of the accident.

(5) Emergency allocation problem.

In actual work, such a situation is often encountered: a certain equipment in charge of a person X needs emergency maintenance, but X cannot arrive in a short time for some reason, and the nearby person Y does not have the key of X. This requires that Y first go to the key management department to collect the key before he can work instead of X. This situation is obviously not conducive to dealing with emergencies.

The system of the present invention does not have this problem. When the management department dispatches Y to replace X for maintenance work, it authorizes Y to use the smart electronic key carried by Y to open a certain smart lock. This flexible setting can efficiently solve the emergency allocation problem. This kind of emergency authority can be temporary, and one-time authorization or multiple authorizations can be flexibly controlled.

(6) The problem of changing the lock.

If the traditional lock body or lock cylinder is replaced, the corresponding key also needs to be replaced. This problem does not exist in the intelligent lock system of the present invention. Workers don't have to know if the lock has been replaced, as the process for opening any smart lock is the same.

(7) The matching problem between the key and the lock.

If a worker needs to open multiple locks, according to the working method of traditional metal locks, the worker needs to carry a bunch of keys, and needs to find a matching key every time he unlocks. The greater the number of keys, the more difficult it can be to find a matching key, especially if the keys are all the same shape.

This problem does not exist in the intelligent lock among the present invention. No matter how many smart locks there are, and no matter how many smart electronic keys a certain smart lock can be opened, the process of opening a smart lock with a smart electronic key is exactly the same. This property is very suitable for industrial application business needs with a large number of locks and a large number of unlockers.

(8) Fingerprint lock replacement fingerprint or password problem.

Fingerprint combination locks have many advantages over traditional metal locks, but there are still many problems. For example, the operation of erasing a specific fingerprint requires certain skills and may not be timely; erasing a certain password may cause all users using the password to lose the ability to unlock. At the same time, fingerprint locks need to be equipped with batteries, which is not conducive to long-term use in harsh outdoor environments.

This problem does not exist in the intelligent lock among the present invention. Each unlocking process is a user identity (based on the registered mobile phone number), the identity of the smart lock (the data management center can verify whether the staff’s business needs to open the smart lock), an intelligent electronic key (the data management center can Verify whether the user carries the smart electronic key) binding, and can only unlock after being authorized by the data management center. The unlock authorization is one-time, and it cannot be opened again after the lock is closed, unless the unlocking process is performed again.

Embodiment one

This embodiment discloses an intelligent lock management system.

As shown in Figures 1-3, the present invention designs a smart lock composed of an electronic chip-controlled mechanical lock body and a smart electronic key managed by a network.

(1) Smart lock

The composition of the smart lock includes a computing module, a storage module, a communication module, a mechanical control module, and a mechanical lock body. The computing module is a small processor, which verifies whether the instruction of unlocking or closing the lock is legal through calculation; the storage module stores relevant data, including the identity mark L I D of the smart lock body, the built-in key (a secret information) LK of the smart lock, the unlocking and The lock records data, etc.; the communication module is the communication interface with the smart electronic key, which is a physical interface, and sometimes also has the power supply function for the lock body; the mechanical control module is to control a micro motor. When receiving the unlock command, Control the rotation of the motor to drive a metal bar similar to a latch, so that the smart lock is opened under the action of a spring; when the lock command is received, the motor rotates, and the lock can be closed under the action of an external force, and the metal bar of the latch automatically resets; the mechanical lock The body part can vary greatly according to different types of application requirements, but the basic principle is the blocking effect of the latch on the ejection of the deadbolt. To remove the obstruction of the bolt is to open the lock; to restore the obstruction of the bolt to the bolt is to close the lock.

Disclosed in the present invention is an intelligent lock composed of an electronic chip controlling a mechanical lock body, which includes the following components:

1) Calculation module, used to execute data integrity protection algorithm MAC, and other simple operations and judgments;

2) storage module, used to store key data, including the identity mark L I D of the lock, and the data encryption key LK shared between the lock and the data management center;

3) a communication module, used to connect the smart electronic key of the smart lock;

4) The mechanical control module pulls the latch through the micro motor under the control command sent by the computing module.

The unlocking process of the smart lock includes the following steps:

1) Connect the smart lock with a smart electronic key;

2) The communication module receives the unlock instruction sent by the smart electronic key connected to the smart lock, and transmits the instruction data to the calculation module;

3) The calculation module performs calculation according to the data format, including data integrity protection algorithm and data comparison judgment. If the data verification is correct, the calculation module sends an unlock command to the mechanical control module;

4) After the mechanical control module receives the unlock instruction in step 2), it starts the micro motor to pull the latch, and feeds back the execution result to the calculation module;

5) The computing module sends the successful unlocking information together with the ID of the smart lock L ID to the smart electronic key through the communication module.

The composition diagram of the smart lock disclosed by the present invention is shown in FIG. 1 .

The locking process of the smart lock disclosed by the present invention includes the following steps:

1) Connect the smart lock with a smart electronic key;

2) The bolt is inserted into the lock body by external force, and the bolt returns to its original position under the action of the spring;

3) After the calculation module detects the lock-closing success signal, it sends the execution result together with the identity LID of the smart lock to the smart electronic key connected to the smart lock through the communication module.

Or include the following steps:

1) Connect the smart lock with a smart electronic key;

2) Insert the lock tongue into the lock body by external force;

3) The smart electronic key sends a lock instruction to the smart lock;

4) The calculation module transmits the locking instruction to the mechanical control module;

5) The mechanical control module starts the micro motor to push the latch back to its original position;

6) After the calculation module detects the lock-closing success signal, it sends the execution result together with the identity LID of the smart lock to the smart electronic key connected to the smart lock through the communication module.

(2) Smart electronic key

The smart electronic key designed by the present invention is an electronic device with the following functions: (1) communication with the smart lock, including sending and receiving data to the smart lock, and completing through a physical interface or a wireless interface; (2) communication with the smart phone Communication, including sending data and receiving data, is realized through wireless (such as Bluetooth, WI FI) connection; (3) data encryption algorithm E and decryption algorithm D; (4) identification of data sources to avoid forged data.

For this reason, the physical composition of the smart electronic key includes the following parts: (1) computing module, that is, a microprocessor, which can realize data encryption and data decryption; (2) storage module, which stores key data, including the identity of the key itself KID , the built-in key KK of the key, the address of the data management center, etc.; (3) the communication module, including the communication interface with the smart lock and the wireless communication with the smart phone; (4) the power supply module, which uses a rechargeable Battery power supply; (5) Power output module, if necessary, provides power for the internal processor of the smart lock; (6) Signal display module, through different photoelectric signals, indicating different processing results, such as success or failure , or in progress.

The intelligent electronic key disclosed by the present invention includes the following components:

1) Calculation module, used to execute encryption algorithm E and decryption algorithm D, and other simple calculations and judgments;

2) a storage module, used to store key data, including the identity KID of the smart electronic key, and the data encryption key KK shared between the smart electronic key and the data management center;

3) The lock communication module is used to connect the smart lock, send instructions to the smart lock through the physical interface, and receive the data sent by the smart lock;

4) The mobile phone communication module is used to connect the smart phones of the staff, and connect to the background data management center through the mobile phone, so as to send and receive data;

5) a power input module, used to charge the smart electronic key;

6) The power output module provides power supply for the smart lock physically connected with it.

The composition diagram of the smart electronic key disclosed by the present invention is shown in FIG. 2 .

The intelligent electronic key disclosed by the present invention performs the following steps in the unlocking process:

1) Send a communication request to the smart lock connected to it through the physical communication interface, and the smart lock replies with its own identity L ID;

2) After the smart electronic key receives the identity mark L I D of the smart lock connected to it, it sends the unlock command CMD, the identity mark L I D of the smart lock, and the identity mark KID of the smart electronic key to the smart electronic key. The smart phone connected with the key is forwarded to the data management center by the smart phone.

The intelligent electronic key disclosed by the present invention performs the following steps in the process of locking:

1) Receive the lock success message (L I D, LOCKED) of the smart lock from the communication module of the lock;

2) Send (L I D, LOCKED) to the data management center through the user's mobile phone.

Or perform the following steps:

1) The smart electronic key sends a lock command to the smart lock connected to it;

2) After the smart lock function is locked, send a message (LID, LOCKED) to the smart electronic key;

3) The smart electronic key forwards (LID, LOCKED) to the data management center through the smart phone connected to it, where L D is the identity of the smart lock, and LOCKED is the lock A special flag for a successful shutdown.

(3) Intelligent lock management system

The device of the present invention is not an independently used device, but an application system. The application system includes a data management center, smart locks, smart electronic keys, and smart phones of staff.

An intelligent lock management system, including an intelligent lock, an intelligent electronic key, an intelligent terminal and a data management center, wherein:

Smart lock, which is used to communicate with the smart electronic key, and send its own identity information LID to the smart electronic key; receive the verification code code, random number R and third encrypted information sent by the smart electronic key, based on the verification code code 1. Random number R and the key LK corresponding to the identity information LID of the smart lock, generate verification encrypted information t ^' , compare t ^' with t in the third encrypted information, and if the two are the same, perform the unlocking action;

The smart electronic key is used to communicate with the smart lock, obtain the identity information LID of the smart lock, and encrypt the identity information LID of the smart lock, the identity information KID of the smart electronic key and the unlocking request to form the first encrypted information. The first encrypted information is sent to the smart terminal; it is also used to receive the verification code code and the third encrypted information sent by the smart terminal, decrypt the third encrypted information, obtain the random number R, and combine the verification code code, the random number R and the third The encrypted information is sent to the smart lock;

An intelligent terminal, which is used to receive the first encrypted information sent by the smart electronic key, encrypt the staff identity information UID and the first encrypted information to form the second encrypted information, and send the second encrypted information to the data management center; It is used to receive the verification code code and the third encrypted information sent by the data management center, and send the verification code code and the third encrypted information to the smart electronic key;

The data management center is used to receive the second encrypted information sent by the smart terminal, generate a verification code code and a random number R, and send the verification code code to the smart terminal; based on the verification code code and the random number R, obtain the smart electronic key ciphertext c and the smart lock data integrity tag t, obtain the third encrypted information based on c and t, and send the third encrypted information to the smart terminal.

Further, the data management center encrypts the random number R with the key KK corresponding to the KID to obtain the ciphertext c; edits the unlock command OPEN, and performs the verification code, the random number R, the unlock command OPEN and the key LK corresponding to the L I D Encrypt to get the data integrity label t.

Further, the data management center is also used for judging whether the staff in the received second encrypted information holds the smart electronic key KID based on the database of the corresponding relationship between the staff, the smart electronic key and the smart lock, and judging whether the smart key Whether the electronic key KI D has the authority to open the smart lock L I D.

further,

The smart electronic key is also used to send a lock command to the smart lock;

The smart lock is also used to receive the lock command sent by the smart electronic key, and execute the lock operation;

or,

Described intelligent lock is also used for detecting lock-off state or unlock state, after unlocking success and closing lock successfully, unlock success information, lock success information, intelligent lock identity information L I D are sent to intelligent electronic key;

The smart electronic key is also used to receive the unlocking success information, lock closing success information, and smart lock identity information L I D sent by the smart lock, and send the smart electronic key identity information KID, unlocking success information, lock closing success information, and smart lock identity information. The information L I D is sent to the smart terminal;

The smart terminal is also used to receive the smart electronic key identity information KID, unlock success information, lock success information, and smart lock identity information LID sent by the smart electronic key, and store the staff identity information UID, smart electronic key identity information KID, The unlocking success information, the locking success information, and the smart lock identity information L I D are sent to the data management center;

The data management center is also used to receive staff identity information U I D, intelligent electronic key identity information KID, unlock success information, lock success information, smart lock identity information L I D, and transfer the data management center current time T, staff identity information The U I D, the smart electronic key identity information KID, the unlock success information, the lock success information, and the smart lock identity information L I D are saved.

When in use, the staff's smart phone is wirelessly connected to the smart electronic key, the smart electronic key is connected to the smart lock, and the identity information of the smart lock is obtained, and then the relevant data is sent to the staff's smart phone, and the staff's smart phone sends the relevant data sent to the data management center. Since the relationship between the staff's smart phone and the smart electronic key is authorized and bound by the data management center, the smart electronic key cannot work independently; the data management center sends an unlock command based on this information; after the smart electronic key receives the unlock command, The instruction is sent to the smart electronic key through the staff's smart phone, and the smart electronic key sends the data to the smart lock; after receiving the instruction, the smart lock performs certain calculations to determine whether the instruction is correct, and then unlocks.

Embodiment two

This embodiment discloses a method for using an intelligent lock management system.

The intelligent lock system disclosed in the present invention includes an intelligent lock, an intelligent electronic key, and a user's smart phone connected with the intelligent electronic key, and performs the following steps during the unlocking process:

1) The staff communicates and connects the smart electronic key to the smart lock;

2) The smart electronic key inquires about the identity of the smart lock, and the smart lock feeds back its identity information LID to the smart electronic key;

3) The smart electronic key sends the following information to the smart phone: (CMD, L I D, KID), wherein CMD is a request for unlocking; the smart phone sends the following information to the data management center: (U I D, CMD, L I D, KID), wherein U I D is the identity of the staff member, which can be the account number of the staff member in the data management center;

4) The data management center performs the following steps after receiving the data in step 3):

a) According to the U ID, check whether the user holds the smart electronic key KID, and whether the user has the authority to open the smart lock L ID. If the verification is not passed, it will make an error according to the prompt; otherwise, continue to execute.

b) check the mobile phone number of the staff member, randomly generate a verification code code, and send the verification code to the mobile phone number of the staff member;

c) Generate a random number R, use the key KK corresponding to KID to encrypt R, and obtain the ciphertext c=E(KK, R);

d) Edit the unlock command OPEN, use the key LK corresponding to LID to calculate the data integrity label t=MAC(LK, OPEN, code, R), where OPEN is the unlock command;

e) send the encrypted result (OPEN,c,t) to said worker's smartphone;

5) After the staff's smart phone receives the above data (OPEN, c, t), the application software prompts the user to input the verification code, and after inputting the verification code code, the smart phone will (OPEN, c, t, code) sent to the smart electronic key;

6) The smart electronic key uses the built-in key KK to decrypt c to obtain R, and sends (OPEN, code, R, t) to the smart lock;

7) After the smart lock receives the data in step 6), it uses the built-in key LK to calculate t'=MAC(LK,OPEN,code,R), and verifies whether the equation t'=t is established. If the verification is passed, start the micro motor to unlock;

8) After the smart lock is successfully unlocked, send data (L I D, UNLOCKED) to the smart electronic key to indicate successful unlocking. The smart electronic key sends data (L I D, KID, UNLOCKED) to the smart phone of the staff member, and the smart phone of the staff member forwards the data to the data management center.

9) After the data management center receives the data in step 8), it records data such as U ID, L ID, KID, T, UNLOCKED, etc., wherein T is the current time of the data management center.

The locking process of the intelligent lock system disclosed in the present invention includes the following steps:

1) The staff closes the smart lock by external force, so that the latch in the smart lock returns to its original position;

2) The smart lock sends data L I D, LOCKED to the smart electronic key;

3) The smart electronic key sends data (L I D, KID, LOCKED) to the smart phone;

4) The smart phone sends data (UID, LID, KID, LOCKED) to the data management center;

5) The data management center records data U I D, L I D, KID, T, LOCKED, wherein T is the current time of the data management center.

or the following steps:

1) The staff connects the smart electronic key with the smart lock;

2) The smart electronic key sends a lock command LOCK to the smart lock;

3) closing the smart lock by external force;

4) After the mechanical control module in the smart lock receives the lock command LOCK in step 2), it starts the micro motor and pushes the latch back to its original position;

5) The smart lock sends data (LID, LOCKED) to the smart electronic key;

6) The smart electronic key sends data (LID, KID, LOCKED) to the smart phone;

7) The smart phone sends data (UI D, L D, KID, LOCKED) to the data management center;

8) The data management center records data UI D, LI D, KID, T, LOCKED, where T is the current time of the data management center.

Although the smart lock and the smart electronic key of the present invention have many advantages, the unlocking process requires the user to connect the smart electronic key with the physical interface of the smart lock and input a verification code, and no more operations are required. All the unlocking processes are controlled by the smart electronic key. The interaction between the key and the staff's smart phone, and between the smart phone and the data management center is completed. Depending on the network quality, the unlocking process may take one or two seconds or even longer, but it does not affect general business applications.

The steps described in this embodiment will be described with examples below:

(1) Implementation based on the national Hash function standard SM3 and the national cryptographic algorithm standard SM4

During the specific implementation of the present invention, any cryptographic algorithm can be used to encrypt and decrypt data. Generally, commercial encryption algorithms are safe and reliable. In our embodiment, considering the state's management and supervision of related security products, the national Hash function standard SM3 and the national encryption algorithm standard SM4 can be used.

SM3 is a national encryption standard, which regulates a Hash function based on 32bit word operation, and outputs 256 bits, that is, 32 bytes; SM4 is a national encryption algorithm standard, which is a block cipher with a block length of 128 bits . The original data group is a 128-bit long plaintext group, and after encryption, a 128-bit long ciphertext group is obtained. Given the key k and the data data, the SM4 encryption algorithm obtains the ciphertext data c=SM4Enc(k,data), and the corresponding decryption algorithm is data=SM4Dec(k,c).

(2) Specific examples

Assume that the ID of an intelligent lock LID=0001001a (hexadecimal representation), the ID of a smart electronic key is KID=00020013, and the mobile phone number of the staff using the smart electronic key is 12345678900.

In the data management center, there are records such as (Zhang San, 12345678900, KID=00020013, L I D=0001001a), (Zhang San, 12345678900, KID=00020013, L I D=0001001b) and other data, indicating that Zhang San has the identity as KI The staff of the smart electronic key with D=00020013 has the authority to open the smart locks 0001001a and 0001001b. The data management center implements various national standard encryption algorithms and Hash function algorithms.

When Zhang San uses the smart electronic key to open the smart lock 0001001a, connect the smart electronic key 00020013 with the smart lock L I D =0001001a (such as a physical connection). The smart electronic key inquires about the identity of the smart lock, the smart lock feeds back data 0001001a, the smart electronic key sends the data (OPEN, L I D = 0001001a, KID = 00020013) to Zhang San's mobile phone, and Zhang San's mobile phone sends (OPEN, L I D = 0001001a, KI D = 00020013) is sent to the data management center through its own account, and the data management center receives the data (OPEN, L I D = 0001001a, KI D = 00020013), and knows that the data comes from the account of U I D, so record (U I D, T, OPEN, L I D = 0001001a, KID = 00020013), where T is the system clock.

The data management center then performs the following operations:

a) Check whether the user holds the intelligent electronic key KID=00020013 according to the U ID, and whether the user has the authority to open the LID=0001001a. If the verification fails, an error will be prompted as required; otherwise, continue to execute.

b) Check the mobile phone number of the current staff member and randomly generate a verification code

code=1234, send the verification code to the mobile phone number of the staff;

c) generate a random number R=01234567, use the key KK corresponding to KID to encrypt R, and obtain the ciphertext c=SM4Enc(KK, 01234567);

d) Use the key LK corresponding to L I D to calculate the data integrity protection label t=SM3(LK,

OPEN＝01, code＝1234, R＝01234567), wherein OPEN＝01 means unlock command;

e) Send the encrypted result (OPEN=01, t, c) to the staff's smartphone;

After receiving the above data (01, t, c) on the smart phone of the staff, input the verification code code=1234 sent from the data management center; after the user enters the verification code code=1234, the smart phone will (OPEN=01, t ,c,code=1234) sent to the smart electronic key;

The smart electronic key uses the built-in key KK to decrypt c to get R=SM4Dec(KK,c)=01234567, and sends (OPEN=01, code=1234, R=01234567, t) to the smart lock;

After the smart lock receives the above data, it uses the built-in key LK to calculate

t'=SM3(LK, OPEN=01, code=1234, R=01234567)

Verify whether t'=t holds. If the verification is passed, the micro motor is started to unlock.

It cannot be seen from the workflow between devices that smart locks, smart electronic keys and users are all flexibly matched. The data management center has information about all smart locks and smart electronic keys, especially key information. Smart locks can be produced independently, and smart electronic keys can also be produced independently. If industry users believe that the device manufacturer's built-in key is safe and reliable, updating the key is not a necessary process. There are many mature technologies for key update, and the present invention does not limit which key update technology is used.

The opening and closing of the smart lock has data sent to the data management center, so the data management center can accurately grasp the opening and closing of the smart lock, including when and who uses which smart electronic key to open or close which smart lock, so that it can be recorded The working hours of the staff after unlocking. If supervision of the work process is required, other auxiliary measures, such as video surveillance, are required.

One intelligent electronic key in the present invention can be used to open any intelligent lock, and the same intelligent lock can be opened with multiple intelligent electronic keys. There is no relationship between the smart lock and the smart electronic key, and whether the lock can be unlocked depends on the authorization of the data management center. In this way, no matter how many locks are authorized to open, the staff does not need to carry a bunch of keys. The number of smart keys can be determined according to the number of relevant staff, while the number of smart locks can be determined according to industry application requirements.

In addition, it should be noted that the physical connection between the smart lock and the smart electronic key in the present invention can satisfy many practical application scenarios, and is not the technical key of the present invention. In some special applications, the communication connection between the smart lock and the smart electronic key can be through other short-distance wireless communication methods. In this case, it is only necessary to change the physical communication interface to a short-distance wireless communication interface. When using the wireless communication interface, more information security protection may be required, and the security protection in this aspect can use traditional security communication technology, which is not the content of the present invention.

The staff's smart phone in the present invention can also be other mobile devices with mobile network communication functions, such as i Pad or some special equipment. Such substitutions with different names and similar functions are obvious. In the present invention, for the convenience of description, it is assumed that the mobile communication device used by the staff is a smart phone, and this limitation on the name does not constitute a technical limitation to the present invention. The staff in the present invention is also based on the enterprise application pattern. In other application scenarios, different titles may be used.

Those skilled in the art should understand that each module or each step of the present invention described above can be realized by a general-purpose computer device, optionally, they can be realized by a program code executable by the computing device, thereby, they can be stored in a memory The device is executed by a computing device, or they are made into individual integrated circuit modules, or multiple modules or steps among them are made into a single integrated circuit module for realization. The invention is not limited to any specific combination of hardware and software.

Although the specific implementation of the present invention has been described above in conjunction with the accompanying drawings, it does not limit the protection scope of the present invention. Those skilled in the art should understand that on the basis of the technical solution of the present invention, those skilled in the art do not need to pay creative work Various modifications or variations that can be made are still within the protection scope of the present invention.

Claims (10)

1. The utility model provides an intelligence lock management system, its characterized in that, includes intelligent lock, intelligent electronic key, intelligent terminal and data management center, wherein:

the intelligent lock is used for being in communication connection with the intelligent electronic key and sending the identity information LID of the intelligent lock to the intelligent electronic key; receiving a verification code, a random number R and third encryption information sent by the intelligent electronic key, and generating verification encryption information t based on a key LK corresponding to the verification code, the random number R and intelligent lock identity information LID ^’ Comparing t ^’ And t in the third encrypted information, if the two are the same, then the unlocking action is executed;

the intelligent electronic key is used for being in communication connection with the intelligent lock, acquiring identity information LID of the intelligent lock, encrypting the identity information LID of the intelligent lock, the identity information KID of the intelligent electronic key and the unlocking request to form first encryption information, and sending the first encryption information to the intelligent terminal; the intelligent lock is also used for receiving the verification code and the third encrypted information sent by the intelligent terminal, decrypting the third encrypted information to obtain a random number R, and sending the verification code, the random number R and the third encrypted information to the intelligent lock;

the intelligent terminal is used for receiving first encryption information sent by the intelligent electronic key, encrypting the identity information UID of the staff and the first encryption information to form second encryption information, and sending the second encryption information to the data management center; the intelligent electronic key is also used for receiving the verification code and the third encryption information sent by the data management center and sending the verification code and the third encryption information to the intelligent electronic key;

the data management center is used for receiving second encryption information sent by the intelligent terminal, generating a verification code and a random number R, and sending the verification code to the intelligent terminal; and obtaining an intelligent electronic key ciphertext c and an intelligent lock data integrity tag t based on the verification code and the random number R, obtaining third encryption information based on c and t, and sending the third encryption information to the intelligent terminal.

2. The intelligent lock management system according to claim 1, wherein the data management center encrypts the random number R with a key KK corresponding to KID to obtain a ciphertext c; and editing an unlocking instruction OPEN, and encrypting a verification code, a random number R, and a key LK corresponding to the unlocking instruction OPEN and the LID to obtain a data integrity label t.

3. The system for managing a smart lock according to claim 1, wherein the data management center is further configured to determine whether the staff member in the received second encryption information holds the smart electronic key KID and determine whether the smart electronic key KID has an authority to unlock the smart lock LID based on a database of correspondence relationships between the staff member, the smart electronic key, and the smart lock.

4. The intelligent lock management system of claim 1,

the intelligent electronic key is also used for sending a lock closing instruction to the intelligent lock;

the intelligent lock is also used for receiving a lock closing instruction sent by the intelligent electronic key and executing lock closing operation;

or,

the intelligent lock is also used for detecting a lock closing state or an unlock state, and after the lock is successfully unlocked and the lock is successfully closed, the unlocking success information, the lock closing success information and the intelligent lock identity information LID are sent to the intelligent electronic key;

the intelligent electronic key is also used for receiving unlocking success information, locking success information and intelligent lock identity information LID sent by the intelligent lock, and sending the intelligent electronic key identity information KID, the unlocking success information, the locking success information and the intelligent lock identity information LID to the intelligent terminal;

the intelligent terminal is also used for receiving intelligent electronic key identity information KID, unlocking success information, locking success information and intelligent lock identity information LID which are sent by the intelligent electronic key, and sending staff identity information UID, the intelligent electronic key identity information KID, the unlocking success information, the locking success information and the intelligent lock identity information LID to the data management center;

the data management center is further used for receiving the staff identity information UID, the intelligent electronic key identity information KID, the unlocking success information, the locking success information and the intelligent lock identity information LID, and storing the current time T of the data management center, the staff identity information UID, the intelligent electronic key identity information KID, the unlocking success information, the locking success information and the intelligent lock identity information LID.

5. The intelligent lock management system according to claim 1, wherein the intelligent lock comprises:

the storage module is used for storing key data, including an identity identifier LID of the lock, a data encryption key LK shared between the lock and the data management center, and unlocking and locking record data;

the communication module is used for communicating with an intelligent electronic key connected with the intelligent lock, receiving an unlocking instruction, a locking instruction, a verification code, a random number R and third encryption information sent by the intelligent electronic key, and sending the unlocking instruction, the locking instruction, the verification code, the random number R and the third encryption information to the computing module;

a computing module for receiving the unlocking instruction, the verification code, the random number R and the third encryption information sent by the communication module, acquiring the data encryption key LK in the storage module and executing the data integrity protection algorithm MAC, and generating the verification encryption information t based on the verification code, the random number R and the key LK ^’ Comparing t ^’ And t in the third encrypted information, if the two are the same, sending an unlocking instruction to the mechanical control module; the mechanical control module is also used for receiving a locking instruction sent by the communication module and sending the locking instruction to the mechanical control module;

and the mechanical control module is used for receiving the unlocking instruction and the locking instruction sent by the computing module and executing unlocking operation and locking operation based on the unlocking instruction and the locking instruction.

6. The intelligent lock management system of claim 5,

the calculation module is also used for acquiring unlocking success information and locking success information of the mechanical control module and sending the unlocking success information and the locking success information to the communication module;

the communication module is also used for receiving the unlocking success information and the locking success information sent by the computing module and sending the unlocking success information, the locking success information and the identification LID of the intelligent lock to the intelligent electronic key.

7. The smart lock management system of claim 1 wherein said smart electronic key comprises:

the storage module is used for storing key data, including an intelligent electronic Key Identity (KID) and a built-in key KK of a key;

the intelligent terminal communication module is used for receiving the first encryption information sent by the calculation module, sending the first encryption information to the intelligent terminal, receiving the verification code and the third encryption information sent by the intelligent terminal, and sending the verification code and the third encryption information to the calculation module;

the computing module is used for realizing data decryption, receiving the verification code and the third encrypted information sent to the intelligent terminal communication module, decrypting the third encrypted information to obtain a random number R, and sending an unlocking instruction, a locking instruction, the verification code, the random number R and the third encrypted information to the locking communication module; the intelligent terminal communication module is also used for encrypting data, receiving the identity identifier LID of the intelligent lock sent by the lock communication module, acquiring the identity identifier KID of the intelligent electronic key of the storage module, encrypting the identity information LID of the intelligent lock, the identity information KID of the intelligent electronic key and the unlocking request to form first encryption information, and sending the first encryption information to the intelligent terminal communication module; receiving unlocking success information, locking success information and an identity identifier LID of the intelligent lock which are sent by the opposite-lock communication module, and sending the information to the opposite-intelligent-terminal communication module;

the lock pairing communication module is used for acquiring an unlocking instruction, a locking instruction, a verification code, a random number R and third encryption information sent by the calculation module, and sending the unlocking instruction, the locking instruction, the verification code, the random number R and the third encryption information to the intelligent lock; and receiving unlocking success information, locking success information and an intelligent lock identity identifier LID which are sent by the intelligent lock and sending the information to the computing module.

Or,

the intelligent electronic key further comprises:

the power supply module is used for supplying power to the intelligent electronic key;

a power output module for providing a power supply for the smart lock;

and the signal display module is used for displaying the current processing result through different photoelectric signals.

8. A use method of an intelligent lock management system is characterized in that: the method comprises an unlocking method, wherein the unlocking method comprises the following steps:

the intelligent electronic key acquires intelligent lock identity information LID, encrypts the identity information LID of the intelligent lock, the intelligent electronic key identity information KID and the unlocking request to form first encryption information and sends the first encryption information to the intelligent terminal;

the intelligent terminal receives first encrypted information sent by the intelligent electronic key, encrypts the identity information UID of the staff and the first encrypted information to form second encrypted information, and sends the second encrypted information to the data management center;

the data management center receives second encrypted information sent by the intelligent terminal, generates a verification code and a random number R, and sends the verification code to the intelligent terminal; obtaining an intelligent electronic key ciphertext c and an intelligent lock data integrity tag t based on the verification code and the random number R, obtaining third encryption information based on c and t, and sending the third encryption information to the intelligent terminal;

the intelligent terminal receives the verification code and the third encryption information sent by the data management center and sends the verification code and the third encryption information to the intelligent electronic key;

the intelligent electronic key receives the verification code and the third encrypted information sent by the intelligent terminal, decrypts the third encrypted information to obtain a random number R, and sends the verification code, the random number R and the third encrypted information to the intelligent lock;

the intelligent lock receives the verification code, the random number R and the third encryption information sent by the intelligent electronic key based onA verification code, a random number R and a key LK corresponding to the intelligent lock identity information LID are verified to generate verification encryption information t ^’ Comparing t ^’ And t in the third encrypted information, if the two are the same, then the unlocking action is executed.

9. The method of using an intelligent lock management system according to claim 8, further comprising the steps of:

after the intelligent lock is successfully unlocked, the unlocking success information intelligent lock identity information LID is sent to the intelligent electronic key;

the intelligent electronic key receives unlocking success information and intelligent lock identity information LID sent by the intelligent lock, and sends the intelligent electronic key identity information KID, the unlocking success information and the intelligent lock identity information LID to the intelligent terminal;

the intelligent terminal receives intelligent electronic key identity information KID, unlocking success information and intelligent lock identity information LID which are sent by an intelligent electronic key, and sends staff identity information UID, the intelligent electronic key identity information KID, the unlocking success information and the intelligent lock identity information LID to a data management center;

and the data management center receives the identity information UID of the staff, the identity information KID of the intelligent electronic key, the unlocking success information and the identity information LID of the intelligent lock, and stores the current time T of the data management center, the identity information UID of the staff, the identity information KID of the intelligent electronic key, the unlocking success information and the identity information LID of the intelligent lock.

10. The method for using the intelligent lock management system according to claim 9, further comprising a locking method, wherein the locking method comprises the following steps:

the intelligent electronic key sends a lock closing instruction to the intelligent lock;

the intelligent lock receives a locking instruction sent by the intelligent electronic key and executes locking operation;

after the lock is closed, the intelligent lock detects the lock closing state, and sends lock closing success information and intelligent lock identity information LID to the intelligent electronic key;

the intelligent electronic key receives the locking success information and the intelligent lock identity information LID sent by the intelligent lock, and sends the intelligent electronic key identity information KID, the locking success information and the intelligent lock identity information LID to the intelligent terminal;

the intelligent terminal receives intelligent electronic key identity information KID, lock closing success information and intelligent lock identity information LID which are sent by an intelligent electronic key, and sends staff identity information UID, the intelligent electronic key identity information KID, the lock opening success information, the lock closing success information and the intelligent lock identity information LID to a data management center;

the data management center receives the identity information UID of the staff, the identity information KID of the intelligent electronic key, the successful locking information and the identity information LID of the intelligent lock, and stores the current time T of the data management center, the identity information UID of the staff, the identity information KID of the intelligent electronic key, the successful locking information and the identity information LID of the intelligent lock;

or,

the working personnel close the intelligent lock through external force, so that a lock latch in the intelligent lock is restored to the original position;

the intelligent lock detects the locking state, and sends the locking success information and the intelligent lock identity information LID to the intelligent electronic key.

Images