CN115866595A - Device authorization method, device, device and storage medium - Google Patents
Device authorization method, device, device and storage medium Download PDFInfo
- Publication number
- CN115866595A CN115866595A CN202211520133.2A CN202211520133A CN115866595A CN 115866595 A CN115866595 A CN 115866595A CN 202211520133 A CN202211520133 A CN 202211520133A CN 115866595 A CN115866595 A CN 115866595A
- Authority
- CN
- China
- Prior art keywords
- slave device
- slave
- master
- information
- authority
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
本申请公开了一种设备授权方法、装置、设备及存储介质,该方法包括:主设备与从设备碰一碰后,确定所述主设备与所述从设备是否满足组网条件;若所述主设备与所述从设备满足组网条件,所述主设备获得所述从设备的设备信息;所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权,实现了提高设备授权的安全性。
The present application discloses a device authorization method, device, device, and storage medium. The method includes: after a collision between the master device and the slave device, determine whether the master device and the slave device meet the networking conditions; if the The master device and the slave device meet the networking conditions, the master device obtains the device information of the slave device; the master device distributes domain identification information to the slave device, and uploads the domain identification information to the cloud server , authorizing the slave device, so as to improve the security of device authorization.
Description
技术领域technical field
本申请涉及通信技术领域,尤其涉及一种设备授权方法、装置、设备及存储介质。The present application relates to the technical field of communications, and in particular to a device authorization method, device, device and storage medium.
背景技术Background technique
随着计算机网络技术的不断发展进步,各种各样的新型智能设备进入了人们的日常生活以及工作之中,为人类的生产活动发挥重要的作用。多设备的信息互联,需要对将要连接的设备进行认证和授权,从而使不同设备之间的协同合作以及数据共享可以顺利完成。目前,一般通过蓝牙或WiFi(Wireless Fidelity,无线保真)的方式进行设备认证和授权,过程中在进行数据传输时,由于采用的是无线技术,数据传输很容易被拦截或监听,特别是蓝牙设备之间进行认证时,由于还没有产生加密通道,其安全性没有保障。With the continuous development and progress of computer network technology, a variety of new smart devices have entered people's daily life and work, and play an important role in human production activities. The information interconnection of multiple devices requires authentication and authorization of the devices to be connected, so that the collaboration and data sharing between different devices can be completed smoothly. At present, device authentication and authorization are generally carried out through Bluetooth or WiFi (Wireless Fidelity, Wireless Fidelity). During data transmission, due to the use of wireless technology, data transmission is easily intercepted or monitored, especially Bluetooth When authentication is performed between devices, since the encrypted channel has not yet been generated, its security is not guaranteed.
因此,如何提高设备授权的安全性成为亟需解决的问题。Therefore, how to improve the security of device authorization has become an urgent problem to be solved.
发明内容Contents of the invention
本申请实施例提供一种设备授权方法、装置、设备及存储介质,可以提高设备授权的安全性。Embodiments of the present application provide a device authorization method, device, device, and storage medium, which can improve the security of device authorization.
第一方面,本申请实施例提供了一种设备授权方法,所述设备授权方法包括:In the first aspect, the embodiment of the present application provides a device authorization method, the device authorization method includes:
主设备与从设备碰一碰后,确定所述主设备与所述从设备是否满足组网条件;After the master device and the slave device collide, determine whether the master device and the slave device meet the networking conditions;
若所述主设备与所述从设备满足组网条件,所述主设备获得所述从设备的设备信息;If the master device and the slave device meet the networking conditions, the master device obtains the device information of the slave device;
所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权。The master device distributes domain identification information to the slave device, uploads the domain identification information to a cloud server, and authorizes the slave device.
第二方面,本申请实施例还提供了一种设备授权装置,所述设备授权装置包括处理器和存储器,所述存储器中存储有计算机程序,所述处理器调用所述存储器中的计算机程序时执行上述的设备授权方法。In the second aspect, the embodiment of the present application also provides a device authorization device, the device authorization device includes a processor and a memory, a computer program is stored in the memory, and when the processor invokes the computer program in the memory Execute the device authorization method described above.
第三方面,本申请实施例还提供了一种设备,所述设备包括如上述的设备授权装置。In a third aspect, an embodiment of the present application further provides a device, the device including the device authorization apparatus as described above.
第四方面,本申请实施例还提供了一种存储介质,所述存储介质用于存储计算机程序,所述计算机程序被处理器执行时使所述处理器实现上述的设备授权方法。In a fourth aspect, the embodiment of the present application further provides a storage medium, where the storage medium is used to store a computer program, and when the computer program is executed by a processor, the processor implements the above device authorization method.
本申请实施例提供了一种设备授权方法、装置、设备及存储介质,主设备与从设备碰一碰后,确定主设备与从设备是否满足组网条件,若主设备与从设备满足组网条件,主设备获得从设备的设备信息,之后,主设备向从设备派发域标识信息,并将域标识信息上传至云服务器,对从设备进行授权,由于是在主设备与从设备很近的距离内对从设备进行授权,提高了设备授权的安全性。The embodiment of the present application provides a device authorization method, device, device, and storage medium. After the master device and the slave device touch each other, it is determined whether the master device and the slave device meet the networking conditions. If the master device and the slave device meet the networking conditions Conditions, the master device obtains the device information of the slave device, after that, the master device distributes the domain identification information to the slave device, and uploads the domain identification information to the cloud server to authorize the slave device, because the master device is very close to the slave device The slave device is authorized within a distance, which improves the security of device authorization.
附图说明Description of drawings
为了更清楚地说明本申请实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本申请的一些实施例,对于本领域技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present application, the drawings that need to be used in the description of the embodiments will be briefly introduced below. Obviously, the drawings in the following description are only some embodiments of the present application. For those skilled in the art, other drawings can also be obtained based on these drawings without any creative effort.
图1是本申请实施例提供的一种设备授权方法的步骤示意流程图;FIG. 1 is a schematic flowchart of the steps of a device authorization method provided in an embodiment of the present application;
图2是本申请实施例提供的一种设备交互系统示意图;Fig. 2 is a schematic diagram of a device interaction system provided by an embodiment of the present application;
图3是本申请实施例提供的一种设备授权的交互过程示意图;FIG. 3 is a schematic diagram of an interactive process of device authorization provided by an embodiment of the present application;
图4是本申请实施例提供的另一种设备授权的交互过程示意图;Fig. 4 is a schematic diagram of another device authorization interaction process provided by the embodiment of the present application;
图5是本申请实施例提供的一种设备授权装置的示意性框图。Fig. 5 is a schematic block diagram of a device authorization apparatus provided by an embodiment of the present application.
具体实施方式Detailed ways
为了使本申请的目的、技术方案及优点更加清楚明白,以下结合附图及实施例,对本申请进行进一步详细说明。应当理解,此处所描述的具体实施例仅用以解释本申请,并不用于限定本申请。基于本申请中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本申请保护的范围。In order to make the purpose, technical solution and advantages of the present application clearer, the present application will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present application, not to limit the present application. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the scope of protection of this application.
需要说明的是,在本申请中涉及“第一”、“第二”等的描述仅用于描述目的,而不能理解为指示或暗示其相对重要性或者隐含指明所指示的技术特征的数量。由此,限定有“第一”、“第二”的特征可以明示或者隐含地包括至少一个该特征。It should be noted that the descriptions in this application involving "first", "second" and so on are for descriptive purposes only, and should not be understood as indicating or implying their relative importance or implicitly indicating the number of indicated technical features . Thus, the features defined as "first" and "second" may explicitly or implicitly include at least one of these features.
在本申请说明书中描述的参考“一个实施例”或“一些实施例”等意味着在本申请的一个或多个实施例中包括结合该实施例描述的特定特征、结构或特点。由此,在本说明书中的不同之处出现的语句“在一个实施例中”、“在一些实施例中”、“在其他一些实施例中”、“在部分实施例中”等不是必然都参考相同的实施例,而是意味着“一个或多个但不是所有的实施例”,除非是以其他方式另外特别强调。术语“包括”、“包含”、“具有”及它们的变形都意味着“包括但不限于”,除非是以其他方式另外特别强调。Reference to "one embodiment" or "some embodiments" or the like in the specification of the present application means that a particular feature, structure, or characteristic described in connection with the embodiment is included in one or more embodiments of the present application. Thus, appearances of the phrases "in one embodiment," "in some embodiments," "in other embodiments," "in some embodiments," etc. in various places in this specification are not necessarily all References to the same embodiment mean "one or more but not all" unless specifically stated otherwise. The terms "including", "comprising", "having" and variations thereof mean "including but not limited to", unless specifically stated otherwise.
另外,各个实施例之间的技术方案可以相互结合,但是必须是以本领域普通技术人员能够实现为基础,当技术方案的结合出现相互矛盾或无法实现时应当认为这种技术方案的结合不存在,也不在本申请要求的保护范围之内。In addition, the technical solutions of the various embodiments can be combined with each other, but it must be based on the realization of those skilled in the art. When the combination of technical solutions is contradictory or cannot be realized, it should be considered that the combination of technical solutions does not exist , nor within the scope of protection required by the present application.
附图中所示的流程图仅是示例说明,不是必须包括所有的内容和操作/步骤,也不是必须按所描述的顺序执行。例如,有的操作/步骤还可以分解、组合或部分合并,因此实际执行的顺序有可能根据实际情况改变。The flow charts shown in the drawings are just illustrations, and do not necessarily include all contents and operations/steps, nor must they be performed in the order described. For example, some operations/steps can be decomposed, combined or partly combined, so the actual order of execution may be changed according to the actual situation.
随着计算机网络技术的不断发展进步,各种各样的新型智能设备进入了人们的日常生活以及工作之中,为人类的生产活动发挥重要的作用。多设备的信息互联,需要对将要连接的设备进行认证和授权,从而使不同设备之间的协同合作以及数据共享可以顺利完成。目前,一般通过蓝牙或WiFi(Wireless Fidelity,无线保真)的方式进行设备认证和授权,过程中在进行数据传输时,由于采用的是无线技术,数据传输很容易被拦截或监听,特别是蓝牙设备之间进行认证时,由于还没有产生加密通道,其安全性没有保障。With the continuous development and progress of computer network technology, a variety of new smart devices have entered people's daily life and work, and play an important role in human production activities. The information interconnection of multiple devices requires authentication and authorization of the devices to be connected, so that the collaboration and data sharing between different devices can be completed smoothly. At present, device authentication and authorization are generally carried out through Bluetooth or WiFi (Wireless Fidelity, Wireless Fidelity). During data transmission, due to the use of wireless technology, data transmission is easily intercepted or monitored, especially Bluetooth When authentication is performed between devices, since the encrypted channel has not yet been generated, its security is not guaranteed.
为了解决上述问题,本申请实施例提供了一种设备授权方法、装置、设备及存储介质,其中,该方法通过主设备与从设备碰一碰后,确定所述主设备与所述从设备是否满足组网条件;若所述主设备与所述从设备满足组网条件,所述主设备获得所述从设备的设备信息;所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权。由于是在主设备与从设备很近的距离内对从设备进行授权,因此,提高了设备授权的安全性。In order to solve the above problems, an embodiment of the present application provides a device authorization method, device, device, and storage medium, wherein the method determines whether the master device and the slave device are Satisfy the networking conditions; if the master device and the slave device meet the networking conditions, the master device obtains the device information of the slave device; the master device distributes domain identification information to the slave device, and sends the The domain identification information is uploaded to the cloud server, and the slave device is authorized. Because the slave device is authorized within a very close distance between the master device and the slave device, the security of device authorization is improved.
请参阅图1,图1是本申请实施例提供的设备授权方法的流程示意图,该方法可以应用于设备,其中,设备可以是手机、相机、平板电脑、可穿戴设备、车载设备、增强现实(augmented reality,AR)/虚拟现实(virtual reality,VR)设备、笔记本电脑、个人计算机(personal computer,PC)、上网本、个人数字助理(personal digital assistant,PDA)中任一者,本申请实施例中不作任何限制。Please refer to FIG. 1. FIG. 1 is a schematic flowchart of a device authorization method provided in an embodiment of the present application. The method can be applied to a device, where the device can be a mobile phone, a camera, a tablet computer, a wearable device, a vehicle-mounted device, an augmented reality ( Any one of augmented reality (AR)/virtual reality (virtual reality, VR) equipment, notebook computer, personal computer (personal computer, PC), netbook, personal digital assistant (personal digital assistant, PDA), in the embodiment of this application No restrictions are imposed.
如图1所示,本申请实施例提供的设备授权方法包括步骤S101至步骤S103。As shown in FIG. 1 , the device authorization method provided by the embodiment of the present application includes steps S101 to S103.
S101、主设备与从设备碰一碰后,确定所述主设备与所述从设备是否满足组网条件。S101. After a collision between the master device and the slave device, determine whether the master device and the slave device meet a networking condition.
示例性的,主设备与从设备都设有NFC(Near Field Communication,近场通信)模块。依赖于NFC的近场触碰传输能力,主设备与从设备碰一碰,各自发送自己的设备类型信息给对方,其中,设备类型信息包括但不限于主设备类型、从设备类型、从设备允许同时和多个主设备连接、从设备同一时刻只允许与一个主设备连接等。根据从设备的设备类型信息,确定主设备与从设备是否满足组网条件。Exemplarily, both the master device and the slave device are provided with NFC (Near Field Communication, near field communication) modules. Relying on NFC's near-field touch transmission capability, the master device and the slave device touch each other, and each sends its own device type information to the other party. The device type information includes but is not limited to the master device type, slave device type, and slave device. Simultaneously connect to multiple master devices, slave devices are only allowed to connect to one master device at a time, etc. According to the device type information of the slave device, determine whether the master device and the slave device meet the networking conditions.
示例性的,确定所述主设备与所述从设备是否满足组网条件包括:Exemplarily, determining whether the master device and the slave device meet the networking conditions includes:
所述从设备的设备类型为同一时刻只允许与一个主设备连接,且所述从设备当前未与其他主设备建立连接;或者The device type of the slave device is only allowed to be connected to one master device at the same time, and the slave device is currently not connected to other master devices; or
所述从设备的设备类型为允许同时与多个主设备连接。The device type of the slave device allows simultaneous connection with multiple master devices.
例如,若从设备的设备类型为同一时刻只允许与一个主设备连接,则检查从设备当前是否已经与其他主设备建立连接。若从设备当前已经与其他主设备建立连接,则主设备与从设备就不能再建立连接,主设备与从设备不满足组网条件。反之,若从设备当前未与其他主设备建立连接,则主设备与从设备就可以建立连接,主设备与从设备满足组网条件。For example, if the device type of the slave device is only allowed to be connected to one master device at a time, it is checked whether the slave device has currently established a connection with other master devices. If the slave device has already established a connection with other master devices, the master device and the slave device can no longer establish a connection, and the master device and the slave device do not meet the networking conditions. Conversely, if the slave device is not currently connected to other master devices, the master device and the slave device can establish a connection, and the master device and the slave device meet the networking conditions.
又如,若从设备的设备类型为允许同时与多个主设备连接,则主设备与从设备可以建立连接,主设备与从设备满足组网条件。For another example, if the device type of the slave device allows simultaneous connection with multiple master devices, the master device and the slave device can establish a connection, and the master device and the slave device meet the networking conditions.
需要说明的是,若提前就已经确定从设备的设备类型为允许同时与多个主设备连接,则可以省去确定主设备与从设备是否满足组网条件的操作,视具体的应用场景而定,不做限定。It should be noted that if the device type of the slave device has been determined in advance to allow simultaneous connection with multiple master devices, the operation of determining whether the master device and the slave device meet the networking conditions can be omitted, depending on the specific application scenario , without limitation.
S102、若所述主设备与所述从设备满足组网条件,所述主设备获得所述从设备的设备信息。S102. If the master device and the slave device meet a networking condition, the master device obtains device information of the slave device.
若主设备与从设备满足组网条件,也即主设备与从设备可以建立连接,此时,从设备发送自身的设备信息给主设备,主设备获得从设备的设备信息。其中,设备信息包括但不限于设备版本、设备ID等信息。If the master device and the slave device meet the networking conditions, that is, the master device and the slave device can establish a connection, at this time, the slave device sends its own device information to the master device, and the master device obtains the device information of the slave device. Wherein, the device information includes but not limited to information such as device version and device ID.
S103、所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权。S103. The master device distributes domain identification information to the slave device, uploads the domain identification information to a cloud server, and authorizes the slave device.
主设备获得从设备的设备信息后,主设备向从设备派发域标识信息,同时将域标识信息上传至云服务器,云服务器保存该域标识信息。其中,域标识信息是指一系列ip地址的集合,同一个域里面的设备才可以进行认证组网。云服务器通过保存的一个或多个域标识信息,管理域内的各域标识信息对应的设备。主设备对从设备进行权限设置,示例性的,从设备的权限包括但不限于普通权限、管理员权限等多种类型。比如,主设备将从设备的权限设置为普通权限。After the master device obtains the device information of the slave device, the master device distributes the domain identification information to the slave device, and uploads the domain identification information to the cloud server at the same time, and the cloud server saves the domain identification information. Among them, the domain identification information refers to a collection of a series of IP addresses, and only devices in the same domain can perform authentication networking. The cloud server manages the devices corresponding to each domain identification information in the domain through one or more stored domain identification information. The master device sets permissions for the slave devices. Exemplarily, the permissions of the slave devices include but not limited to common permissions, administrator permissions, and other types. For example, the master device sets the permissions of the slave devices to normal permissions.
例如,如图2所示,从设备包括从设备A、从设备B……从设备N等多个,主设备分别与每个从设备P2P(peer-to-peer,点对点技术)碰一碰,主设备获得从设备A、从设备B……从设备N的设备信息,之后,主设备分别向从设备A、从设备B……从设备N派发对应的域标识信息,并将对应的域标识信息上传至云服务器,主设备对从设备A、从设备B……从设备N进行权限设置。For example, as shown in Figure 2, the slave devices include slave device A, slave device B ... slave device N, etc., and the master device touches each slave device P2P (peer-to-peer, peer-to-peer technology), The master device obtains the device information of slave device A, slave device B...slave device N, and then, the master device distributes corresponding domain identification information to slave device A, slave device B...slave device N respectively, and identifies the corresponding domain The information is uploaded to the cloud server, and the master device sets permissions for slave device A, slave device B...slave device N.
在一些实施例中,所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权,包括:In some embodiments, the master device distributes domain identification information to the slave device, uploads the domain identification information to a cloud server, and authorizes the slave device, including:
所述主设备向所述从设备派发所述域标识信息,并将所述域标识信息上传至所述云服务器,将所述从设备的权限默认设置为普通权限。The master device distributes the domain identification information to the slave device, uploads the domain identification information to the cloud server, and sets the authority of the slave device as normal authority by default.
主设备获得从设备的设备信息后,主设备向从设备派发域标识信息,同时,将域标识信息上传至云服务器。从设备接收到域标识信息后,将域标识信息写入自身本地,将从设备的权限默认设置为普通权限。After the master device obtains the device information of the slave device, the master device distributes domain identification information to the slave device, and at the same time uploads the domain identification information to the cloud server. After receiving the domain identification information, the slave device writes the domain identification information locally, and sets the slave device's authority to normal authority by default.
例如,如图3所示,主设备与从设备碰一碰,从设备发送自己的设备信息至主设备,主设备获得从设备的设备信息,之后主设备向从设备派发域标识信息,同时,主设备将域标识信息上传至云服务器,云服务器存储接收到的域标识信息。从设备接收到域标识信息后,写入域标识信息,默认设置普通权限。For example, as shown in Figure 3, the master device touches the slave device, the slave device sends its own device information to the master device, the master device obtains the device information of the slave device, and then the master device distributes domain identification information to the slave device. At the same time, The master device uploads the domain identification information to the cloud server, and the cloud server stores the received domain identification information. After receiving the domain identification information from the device, write the domain identification information, and set the normal authority by default.
在另一些实施例中,所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权,包括:In other embodiments, the master device distributes domain identification information to the slave device, uploads the domain identification information to a cloud server, and authorizes the slave device, including:
所述主设备向所述从设备派发所述域标识信息以及普通权限信息,并将所述域标识信息上传至所述云服务器,基于所述普通权限信息将所述从设备的权限设置为普通权限。The master device distributes the domain identification information and general authority information to the slave device, uploads the domain identification information to the cloud server, and sets the authority of the slave device to normal based on the general authority information. permission.
与上面实施例所不同的是,主设备获得从设备的设备信息后,主设备除了向从设备派发域标识信息以外,还向从设备派发普通权限信息,同时,也将域标识信息上传至云服务器。从设备接收到域标识信息和普通权限信息后,写入域标识信息,基于普通权限信息将从设备的权限设置为普通权限。都是将从设备的权限设置为普通权限,所不同的是一种是默认设置为普通权限,另一种是基于普通权限信息设置为普通权限。The difference from the above embodiment is that after the master device obtains the device information of the slave device, the master device not only distributes the domain identification information to the slave device, but also distributes the general authority information to the slave device, and at the same time uploads the domain identification information to the cloud server. After receiving the domain identification information and common authority information, the slave device writes the domain identification information, and sets the authority of the slave device as normal authority based on the general authority information. Both set the permissions of the slave device to normal permissions, the difference is that one is set to normal permissions by default, and the other is set to normal permissions based on normal permission information.
在一些实施例中,所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行权限设置之后,包括:In some embodiments, the master device distributes domain identification information to the slave device, and uploads the domain identification information to a cloud server, and after setting permissions on the slave device, includes:
所述主设备向所述从设备派发管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限。The master device distributes administrator authority information to the slave device, and sets the authority of the slave device as administrator authority based on the administrator authority information.
由于除了普通权限以外,还有管理员权限,当要将某个从设备的权限设置为管理员权限时,主设备向该从设备派发管理员权限信息,基于管理员权限信息将从设备的权限设置为管理员权限。Since there are administrator rights in addition to ordinary rights, when the rights of a slave device are to be set as administrator rights, the master device sends administrator rights information to the slave device, and based on the administrator rights information, the rights of the slave device Set to administrator privileges.
在一些实施例中,所述主设备向所述从设备派发管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限之前,包括:In some embodiments, the master device distributes administrator authority information to the slave device, and before setting the authority of the slave device to administrator authority based on the administrator authority information, includes:
所述主设备根据所述从设备的设备信息,确定所述从设备是否是域内设备;The master device determines whether the slave device is an intra-domain device according to the device information of the slave device;
所述主设备向所述从设备派发管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限,包括:The master device distributes administrator authority information to the slave device, and sets the authority of the slave device as administrator authority based on the administrator authority information, including:
若所述从设备是域内设备,则所述主设备向所述从设备派发所述管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限。If the slave device is an intra-domain device, the master device distributes the administrator authority information to the slave device, and sets the authority of the slave device as administrator authority based on the administrator authority information.
为了能够成功设置管理员权限,当要确定授权管理员,也即将要设置为管理员权限的从设备时,主设备根据该从设备的设备信息,确定该从设备是否是域内设备,只有是域内的从设备,才有资格设置管理员权限。In order to be able to successfully set the administrator authority, when it is necessary to determine the authorized administrator, that is, to be set as a slave device with administrator authority, the master device determines whether the slave device is an intra-domain device based on the device information of the slave device. The slave device is eligible to set administrator privileges.
若该从设备是域内设备,则主设备向该从设备派发管理员权限信息,基于管理员权限信息将从设备的权限设置为管理员权限。反之,若该从设备不是域内设备,则该从设备没有资格设置管理员权限。If the slave device is an intra-domain device, the master device sends administrator authority information to the slave device, and sets the authority of the slave device as administrator authority based on the administrator authority information. On the contrary, if the slave device is not a device in the domain, then the slave device is not qualified to set administrator rights.
在一些实施例中,所述主设备向所述从设备派发管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限之后,包括:In some embodiments, the master device distributes administrator authority information to the slave device, and after setting the authority of the slave device to administrator authority based on the administrator authority information, includes:
向所述云服务器上传所述从设备的管理员权限信息,以供所述云服务器存储所述从设备的管理员权限信息。uploading the administrator authority information of the slave device to the cloud server, so that the cloud server stores the administrator authority information of the slave device.
成功将从设备的权限设置为管理员权限之后,主设备向云服务器上传从设备的管理员权限信息,云服务器存储从设备的管理员权限信息。云服务器通过存储的管理员权限信息,管理设置管理员权限的从设备。After successfully setting the authority of the slave device to the administrator authority, the master device uploads the administrator authority information of the slave device to the cloud server, and the cloud server stores the administrator authority information of the slave device. The cloud server manages the slave device with the administrator authority through the stored administrator authority information.
示例性的,对从设备设置管理员权限成功后,主设备输出下发管理员权限成功信息。例如,在主设备的显示屏上显示下发管理员权限成功信息。用户可以及时收到该下发管理员权限成功信息,从而获知从设备当前的权限为管理员权限,进一步提高了用户体验。Exemplarily, after the administrator authority is set successfully on the slave device, the master device outputs a message that the administrator authority has been delivered successfully. For example, the display screen of the main device displays a message that the administrator authority has been successfully issued. The user can timely receive the success message of issuing the administrator authority, so as to know that the current authority of the slave device is the administrator authority, which further improves the user experience.
例如,如图4所示,当主设备选择授权管理员,主设备先获得从设备的设备信息,根据该从设备的设备信息,确定该从设备是否是域内设备,若该从设备是域内设备,则主设备向该从设备下发管理员权限信息,基于管理员权限信息对从设备设置管理员权限。对从设备设置管理员权限成功后,显示下发管理员权限成功信息,并且,主设备向云服务器上传从设备的管理员权限信息,云服务器存储从设备的管理员权限信息。For example, as shown in Figure 4, when the master device selects an authorized administrator, the master device first obtains the device information of the slave device, and determines whether the slave device is an intra-domain device according to the device information of the slave device. If the slave device is an intra-domain device, Then the master device issues administrator authority information to the slave device, and sets administrator authority for the slave device based on the administrator authority information. After the administrator authority is successfully set for the slave device, the administrator authority success message is displayed, and the master device uploads the administrator authority information of the slave device to the cloud server, and the cloud server stores the administrator authority information of the slave device.
本申请中使用了NFC的P2P传输方式来进行主设备与从设备之间的数据交互,相比于通过蓝牙、WiFi等方式传输数据,不仅提升了主设备与从设备发现彼此和传输数据的速度,也即实现更快速的数据传输,增强了用户体验;同时,碰一碰的过程主设备与从设备需要足够靠近才能完成数据传输,降低了数据传输过程中被拦截或监听的概率,也不会与其他的设备进行数据交互,因此,实现了更加安全的授权。In this application, the P2P transmission method of NFC is used to carry out the data interaction between the master device and the slave device. Compared with the data transmission through Bluetooth, WiFi, etc., it not only improves the speed of the master device and the slave device to discover each other and transmit data , that is, to achieve faster data transmission and enhance the user experience; at the same time, the master device and the slave device need to be close enough to complete the data transmission during the touch process, which reduces the probability of being intercepted or monitored during the data transmission process. Data interaction will be performed with other devices, therefore, a more secure authorization is realized.
上述实施例中,主设备与从设备碰一碰后,确定主设备与从设备是否满足组网条件,若主设备与从设备满足组网条件,主设备获得从设备的设备信息,之后,主设备向从设备派发域标识信息,并将域标识信息上传至云服务器,对从设备进行授权,由于是在主设备与从设备很近的距离内对从设备进行授权,提高了设备授权的安全性。In the above embodiment, after the master device and the slave device touch each other, it is determined whether the master device and the slave device meet the networking conditions. If the master device and the slave device meet the networking conditions, the master device obtains the device information of the slave device. After that, the master device The device distributes domain identification information to the slave device, uploads the domain identification information to the cloud server, and authorizes the slave device. Since the slave device is authorized within a short distance between the master device and the slave device, the security of device authorization is improved. sex.
请参阅图5,图5为本申请实施例提供的一种设备授权装置的示意性框图。Please refer to FIG. 5 . FIG. 5 is a schematic block diagram of a device authorization apparatus provided in an embodiment of the present application.
如图5所示,该设备授权装置200可以包括处理器211和存储器212,处理器211和存储器212通过总线连接,该总线比如为I2C(Inter-integrated Circuit)总线。As shown in FIG. 5 , the
具体地,处理器211可以是微控制单元(Micro-controller Unit,MCU)、中央处理单元(Central Processing Unit,CPU)或数字信号处理器(Digital Signal Processor,DSP)等。Specifically, the
具体地,存储器212可以是Flash芯片、只读存储器(ROM,Read-Only Memory)磁盘、光盘、U盘或移动硬盘等。存储器212中存储有供处理器211执行的各种计算机程序。Specifically, the
其中,所述处理器211用于运行存储在存储器处理器211中的计算机程序,并在执行所述计算机程序时实现如下步骤:Wherein, the
主设备与从设备碰一碰后,确定所述主设备与所述从设备是否满足组网条件;After the master device and the slave device collide, determine whether the master device and the slave device meet the networking conditions;
若所述主设备与所述从设备满足组网条件,所述主设备获得所述从设备的设备信息;If the master device and the slave device meet the networking conditions, the master device obtains the device information of the slave device;
所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权。The master device distributes domain identification information to the slave device, uploads the domain identification information to a cloud server, and authorizes the slave device.
在一些实施例中,处理器211在实现所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权时,用于实现:In some embodiments, the
所述主设备向所述从设备派发所述域标识信息,并将所述域标识信息上传至所述云服务器,将所述从设备的权限默认设置为普通权限。The master device distributes the domain identification information to the slave device, uploads the domain identification information to the cloud server, and sets the authority of the slave device as normal authority by default.
在一些实施例中,处理器211在实现所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权时,用于实现:In some embodiments, the
所述主设备向所述从设备派发所述域标识信息以及普通权限信息,并将所述域标识信息上传至所述云服务器,基于所述普通权限信息将所述从设备的权限设置为普通权限。The master device distributes the domain identification information and general authority information to the slave device, uploads the domain identification information to the cloud server, and sets the authority of the slave device to normal based on the general authority information. authority.
在一些实施例中,处理器211在实现所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行权限设置之后,用于实现:In some embodiments, the
所述主设备向所述从设备派发管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限。The master device distributes administrator authority information to the slave device, and sets the authority of the slave device as administrator authority based on the administrator authority information.
在一些实施例中,处理器211在实现所述主设备向所述从设备派发管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限之前,用于实现:In some embodiments, before the
所述主设备根据所述从设备的设备信息,确定所述从设备是否是域内设备;The master device determines whether the slave device is an intra-domain device according to the device information of the slave device;
处理器211在实现所述主设备向所述从设备派发管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限时,用于实现:The
若所述从设备是域内设备,则所述主设备向所述从设备派发所述管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限。If the slave device is an intra-domain device, the master device distributes the administrator authority information to the slave device, and sets the authority of the slave device as administrator authority based on the administrator authority information.
在一些实施例中,处理器211在实现所述主设备向所述从设备派发管理员权限信息,基于所述管理员权限信息将所述从设备的权限设置为管理员权限之后,用于实现:In some embodiments, after the
向所述云服务器上传所述从设备的管理员权限信息,以供所述云服务器存储所述从设备的管理员权限信息。uploading the administrator authority information of the slave device to the cloud server, so that the cloud server stores the administrator authority information of the slave device.
在一些实施例中,所述主设备与所述从设备满足组网条件包括:In some embodiments, the master device and the slave device meeting the networking conditions include:
所述从设备的设备类型为同一时刻只允许与一个主设备连接,且所述从设备当前未与其他主设备建立连接;或者The device type of the slave device is only allowed to be connected to one master device at the same time, and the slave device is currently not connected to other master devices; or
所述从设备的设备类型为允许同时与多个主设备连接。The device type of the slave device allows simultaneous connection with multiple master devices.
本申请的实施例中还提供一种设备,该设备的类型包括但不限于是手机、相机、平板电脑、可穿戴设备、车载设备、增强现实(augmented reality,AR)/虚拟现实(virtualreality,VR)设备、笔记本电脑、个人计算机(personal computer,PC)、上网本、个人数字助理(personal digital assistant,PDA)等,本申请实施例中不作任何限制。An embodiment of the present application also provides a device, the type of which includes but is not limited to mobile phones, cameras, tablet computers, wearable devices, vehicle-mounted devices, augmented reality (augmented reality, AR)/virtual reality (virtual reality, VR) ) device, notebook computer, personal computer (personal computer, PC), netbook, personal digital assistant (personal digital assistant, PDA), etc., there is no limitation in this embodiment of the application.
其中,该设备包括设备授权装置,示例性的,该设备授权装置可以为上述实施例中所述的设备授权装置200。设备可以执行本申请实施例所提供的任一种设备授权方法,因此,可以实现本申请实施例所提供的任一种设备授权方法所能实现的有益效果,详见前面的实施例,在此不再赘述。Wherein, the device includes a device authorization device. Exemplarily, the device authorization device may be the
本申请的实施例中还提供一种存储介质,所述存储介质存储有计算机程序,所述计算机程序中包括程序指令,所述处理器执行所述程序指令,实现上述实施例提供的设备授权方法的步骤。例如,该计算机程序被处理器加载,可以执行如下步骤:An embodiment of the present application also provides a storage medium, the storage medium stores a computer program, the computer program includes program instructions, and the processor executes the program instructions to implement the device authorization method provided in the above embodiments A step of. For example, the computer program is loaded by the processor and may perform the following steps:
主设备与从设备碰一碰后,确定所述主设备与所述从设备是否满足组网条件;After the master device and the slave device collide, determine whether the master device and the slave device meet the networking conditions;
若所述主设备与所述从设备满足组网条件,所述主设备获得所述从设备的设备信息;If the master device and the slave device meet the networking conditions, the master device obtains the device information of the slave device;
所述主设备向所述从设备派发域标识信息,并将所述域标识信息上传至云服务器,对所述从设备进行授权。The master device distributes domain identification information to the slave device, uploads the domain identification information to a cloud server, and authorizes the slave device.
以上各个操作的具体实施可参见前面的实施例,在此不再赘述。For the specific implementation of the above operations, reference may be made to the foregoing embodiments, and details are not repeated here.
其中,所述存储介质可以是前述实施例的设备授权装置或设备的内部存储单元,例如设备授权装置或设备的硬盘或内存。所述存储介质也可以是设备授权装置或设备的外部存储设备,例如设备授权装置或设备上配备的插接式硬盘,智能存储卡(Smart MediaCard,SMC),安全数字(Secure Digital,SD)卡,闪存卡(Flash Card)等。Wherein, the storage medium may be an internal storage unit of the device authorization device or device in the foregoing embodiments, such as a hard disk or memory of the device authorization device or device. The storage medium can also be an external storage device of the device authorization device or the device, such as a plug-in hard disk equipped on the device authorization device or the device, a smart memory card (Smart MediaCard, SMC), a secure digital (Secure Digital, SD) card , Flash Card (Flash Card) and so on.
由于该存储介质中所存储的计算机程序,可以执行本申请实施例所提供的任一种设备授权方法,因此,可以实现本申请实施例所提供的任一种设备授权方法所能实现的有益效果,详见前面的实施例,在此不再赘述。Since the computer program stored in the storage medium can execute any of the device authorization methods provided in the embodiments of the present application, therefore, the beneficial effects that can be achieved by any of the device authorization methods provided in the embodiments of the present application can be realized , refer to the previous embodiments for details, and will not be repeated here.
以上仅为本申请的优选实施例,并非因此限制本申请的专利范围,凡是利用本申请说明书及附图内容所作的等效结构或等效流程变换,或直接或间接运用在其他相关的技术领域,均同理包括在本申请的专利保护范围内。The above are only preferred embodiments of the present application, and are not intended to limit the patent scope of the present application. All equivalent structures or equivalent process transformations made by using the description of the application and the accompanying drawings are directly or indirectly used in other related technical fields. , are all included in the patent protection scope of the present application in the same way.
Claims (10)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211520133.2A CN115866595A (en) | 2022-11-30 | 2022-11-30 | Device authorization method, device, device and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211520133.2A CN115866595A (en) | 2022-11-30 | 2022-11-30 | Device authorization method, device, device and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115866595A true CN115866595A (en) | 2023-03-28 |
Family
ID=85668262
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211520133.2A Pending CN115866595A (en) | 2022-11-30 | 2022-11-30 | Device authorization method, device, device and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115866595A (en) |
Citations (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20110210820A1 (en) * | 2010-02-26 | 2011-09-01 | Gm Global Technology Operations, Inc. | Multiple near field communication tags in a pairing domain |
| CN103023539A (en) * | 2012-12-04 | 2013-04-03 | 中兴通讯股份有限公司 | Method and system for starting functions of electronic devices |
| CN204859405U (en) * | 2015-07-24 | 2015-12-09 | 浙江宇视科技有限公司 | Network digital video recorder based on NFC carries out internet protocol camera and inserts |
| CN108592311A (en) * | 2018-04-13 | 2018-09-28 | 珠海格力电器股份有限公司 | Air conditioner equipment pairing method and device |
| CN110139254A (en) * | 2019-04-02 | 2019-08-16 | 视联动力信息技术股份有限公司 | A kind of control method and device regarding networked terminals |
| CN110995554A (en) * | 2019-12-27 | 2020-04-10 | 青岛海尔科技有限公司 | Method, device and storage medium for configuring network access of smart home appliances |
| CN111182515A (en) * | 2019-12-14 | 2020-05-19 | 深圳市优必选科技股份有限公司 | Network distribution method, device, terminal and computer storage medium |
| CN111343618A (en) * | 2020-02-13 | 2020-06-26 | 维沃移动通信有限公司 | Display method and electronic equipment |
| CN112235767A (en) * | 2020-10-13 | 2021-01-15 | 深圳市晨北科技有限公司 | Connection management method, device and medium |
| CN112351412A (en) * | 2019-08-06 | 2021-02-09 | 华为技术有限公司 | Content connection method, system and electronic equipment |
| CN113395345A (en) * | 2021-05-31 | 2021-09-14 | 深圳Tcl新技术有限公司 | Network distribution method and device of Internet of things equipment and storage medium |
| WO2022002211A1 (en) * | 2020-07-01 | 2022-01-06 | 华为技术有限公司 | Cross-device control method, apparatus, and system |
| CN114157994A (en) * | 2021-11-26 | 2022-03-08 | 杭州当虹科技股份有限公司 | Improved device discovery method |
| CN114501406A (en) * | 2022-01-12 | 2022-05-13 | 福州汇思博信息技术有限公司 | Method and system for realizing rapid interconnection of equipment based on NFC |
| CN115390980A (en) * | 2022-10-27 | 2022-11-25 | 深圳开鸿数字产业发展有限公司 | Processing method of distributed interaction, computer equipment and readable storage medium |
-
2022
- 2022-11-30 CN CN202211520133.2A patent/CN115866595A/en active Pending
Patent Citations (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20110210820A1 (en) * | 2010-02-26 | 2011-09-01 | Gm Global Technology Operations, Inc. | Multiple near field communication tags in a pairing domain |
| CN103023539A (en) * | 2012-12-04 | 2013-04-03 | 中兴通讯股份有限公司 | Method and system for starting functions of electronic devices |
| CN204859405U (en) * | 2015-07-24 | 2015-12-09 | 浙江宇视科技有限公司 | Network digital video recorder based on NFC carries out internet protocol camera and inserts |
| CN108592311A (en) * | 2018-04-13 | 2018-09-28 | 珠海格力电器股份有限公司 | Air conditioner equipment pairing method and device |
| CN110139254A (en) * | 2019-04-02 | 2019-08-16 | 视联动力信息技术股份有限公司 | A kind of control method and device regarding networked terminals |
| CN112351412A (en) * | 2019-08-06 | 2021-02-09 | 华为技术有限公司 | Content connection method, system and electronic equipment |
| CN111182515A (en) * | 2019-12-14 | 2020-05-19 | 深圳市优必选科技股份有限公司 | Network distribution method, device, terminal and computer storage medium |
| CN110995554A (en) * | 2019-12-27 | 2020-04-10 | 青岛海尔科技有限公司 | Method, device and storage medium for configuring network access of smart home appliances |
| CN111343618A (en) * | 2020-02-13 | 2020-06-26 | 维沃移动通信有限公司 | Display method and electronic equipment |
| WO2022002211A1 (en) * | 2020-07-01 | 2022-01-06 | 华为技术有限公司 | Cross-device control method, apparatus, and system |
| CN112235767A (en) * | 2020-10-13 | 2021-01-15 | 深圳市晨北科技有限公司 | Connection management method, device and medium |
| CN113395345A (en) * | 2021-05-31 | 2021-09-14 | 深圳Tcl新技术有限公司 | Network distribution method and device of Internet of things equipment and storage medium |
| CN114157994A (en) * | 2021-11-26 | 2022-03-08 | 杭州当虹科技股份有限公司 | Improved device discovery method |
| CN114501406A (en) * | 2022-01-12 | 2022-05-13 | 福州汇思博信息技术有限公司 | Method and system for realizing rapid interconnection of equipment based on NFC |
| CN115390980A (en) * | 2022-10-27 | 2022-11-25 | 深圳开鸿数字产业发展有限公司 | Processing method of distributed interaction, computer equipment and readable storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110569667B (en) | Access control method and device, computer equipment and storage medium | |
| WO2016164194A1 (en) | Cloud-based cross-device digital pen pairing | |
| EP4132025A1 (en) | Information interaction method and apparatus, server, system and storage medium | |
| CN111931962B (en) | Information display method and device and electronic equipment | |
| TW201502969A (en) | Mobile computing device technology and system and method using the same | |
| WO2021036877A1 (en) | Information processing method, device, and computer storage medium | |
| CN111340482B (en) | Conflict detection method, device, node equipment and storage medium | |
| WO2021169863A1 (en) | Multimedia conference data processing method and apparatus, and electronic device | |
| CN108038112B (en) | File processing method, mobile terminal and computer readable storage medium | |
| WO2021227457A1 (en) | Blockchain-based electronic data evidence preservation method and system, and storage medium and terminal | |
| WO2023284387A1 (en) | Model training method, apparatus, and system based on federated learning, and device and medium | |
| JP2023534814A (en) | Information processing method, device, equipment and storage medium | |
| CN112764817A (en) | Equipment function awakening method and device | |
| US10692074B2 (en) | Secure resource sharing between computing devices for electronic transactions | |
| CN115766830B (en) | Computing power network processing method, device, equipment and storage medium | |
| CN112131013A (en) | Method, device, device and storage medium for monitoring call chain in distributed system | |
| WO2020220777A1 (en) | Method for pushing information, device, equipment, and medium | |
| TW202123121A (en) | Payment result acquisition method and apparatus, payment device, and cash register device | |
| CN115174558A (en) | Cloud network terminal integrated identity authentication method, device, equipment and storage medium | |
| CN114048498A (en) | Data sharing method, device, equipment and medium | |
| CN102769663B (en) | Server, method and system for transmitting information | |
| CN115866595A (en) | Device authorization method, device, device and storage medium | |
| WO2016095449A1 (en) | Virtual desktop display method, terminal and storage medium | |
| CN117611147A (en) | Offline payment method, device, equipment and storage medium | |
| CN113407318B (en) | Operating system switching method and device, computer readable medium and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |