CN118353633A - Device processing method, apparatus, system, computer device and storage medium - Google Patents
Device processing method, apparatus, system, computer device and storage medium Download PDFInfo
- Publication number
- CN118353633A CN118353633A CN202410457354.2A CN202410457354A CN118353633A CN 118353633 A CN118353633 A CN 118353633A CN 202410457354 A CN202410457354 A CN 202410457354A CN 118353633 A CN118353633 A CN 118353633A
- Authority
- CN
- China
- Prior art keywords
- equipment
- information
- server
- connection
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/321—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/068—Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer And Data Communications (AREA)
Abstract
The present application relates to a device processing method, apparatus, system, computer device, storage medium and computer program product. The method comprises the following steps: receiving device information of a second device; the first device and the second device belong to the same device cluster to be authenticated; transmitting the equipment information of the first equipment and the equipment information of the second equipment to a server so that the server can perform batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed; and sending the connection certificate of the second equipment returned by the server to the second equipment so that the second equipment can be connected with the server according to the connection certificate. By adopting the method, the authentication efficiency of batch equipment can be improved.
Description
Technical Field
The present application relates to the field of smart home technology, and in particular, to a device processing method, apparatus, system, computer device, storage medium, and computer program product.
Background
With the development of internet technology, the related control of the device can be realized by authenticating and networking the device.
In the conventional technology, when authenticating batch equipment, each equipment is authenticated one by one; however, in the whole authentication process, each device needs to interact with the server for many times, the process is complex, and the authentication efficiency of batch devices is low.
Disclosure of Invention
In view of the foregoing, it is desirable to provide an apparatus processing method, an apparatus, a system, a computer apparatus, a computer readable storage medium, and a computer program product that are capable of improving the authentication efficiency of a batch apparatus.
In a first aspect, the present application provides a device processing method, applied to a first device, including:
receiving device information of a second device; the first device and the second device belong to the same device cluster to be authenticated;
Transmitting the equipment information of the first equipment and the equipment information of the second equipment to a server so that the server can perform batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
And sending the connection certificate of the second equipment returned by the server to the second equipment so that the second equipment can be connected with the server according to the connection certificate.
In one embodiment, before receiving the device information of the second device, the method further includes:
And sending the equipment address of the first equipment to the second equipment so that the second equipment can send the equipment information of the second equipment to the first equipment according to the equipment address.
In one embodiment, before sending the device address of the first device to the second device, the method further includes:
responding to a batch authentication request aiming at the equipment cluster to be authenticated, and acquiring resource configuration information broadcasted by each equipment in the equipment cluster to be authenticated;
and determining the equipment meeting the preset condition from the equipment according to the resource configuration information of the equipment, and taking the equipment as the first equipment.
In one embodiment, the sending the device information of the first device and the device information of the second device to a server includes:
Acquiring an equipment account number of a third equipment and a server address of the server; the third device is used for representing the device corresponding to the device account number to be associated with the first device and the second device;
generating a batch authentication request message according to the equipment information of the first equipment, the equipment information of the second equipment, the equipment account number and the server address;
Sending the batch authentication request message to the server; the server is configured to perform batch authentication on the device information of the first device and the device information of the second device according to the batch authentication request packet, associate the first device and the second device with the device account after the authentication is passed, and generate a connection credential of the second device.
In one embodiment, before sending the connection credential of the second device returned by the server to the second device, the method further includes:
receiving a batch authentication result message returned by the server; the batch authentication result message is obtained by extracting the equipment identifier of the second equipment from the equipment information of the second equipment by the server and generating according to the equipment identifier and the connection certificate of the second equipment;
Splitting the batch authentication result messages to obtain authentication result messages of the second equipment; and the authentication result message of the second equipment at least comprises the equipment identification and the connection certificate of the second equipment.
In one embodiment, splitting the batch authentication result message to obtain the authentication result message of the second device includes:
Splitting the batch authentication result message to obtain a device identifier and a connection certificate of the second device;
and combining the equipment identifier, the connection certificate and the server address of the server of the second equipment to obtain an authentication result message of the second equipment.
In one embodiment, the sending the connection credential of the second device returned by the server to the second device includes:
identifying the equipment identifier of the second equipment from the authentication result message of the second equipment;
Transmitting an authentication result message of the second device to the second device according to the device identifier of the second device, so that the second device can transmit a connection request carrying the device identifier and the connection certificate of the second device to the server according to the server address in the authentication result message; the server is used for establishing connection with the second device after the connection certificate is verified according to the device identifier.
In a second aspect, the present application also provides another device processing method, applied to a server, including:
Receiving equipment information of a first device and equipment information of a second device, which are sent by the first device; the device information of the second device is sent to the first device by the second device, and the first device and the second device belong to the same device cluster to be authenticated;
Performing batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
and sending the connection certificate of the second device to the first device so that the first device can send the connection certificate of the second device to the second device, and the second device can be connected with the server according to the connection certificate.
In one embodiment, after sending the connection credential of the second device to the first device, so that the first device sends the connection credential of the second device to the second device, the second device connects the server according to the connection credential, the method further includes:
generating a connection result of the second device;
Transmitting a connection result of the second device to the second device, so that the second device transmits the connection result of the second device to a third device; and the third device is used for summarizing the connection result of the first device and the connection result of the second device to obtain a batch authentication result of the device cluster to be authenticated.
In a third aspect, the present application also provides an apparatus for processing a device, which is applied to a first device, including:
The first receiving module is used for receiving the equipment information of the second equipment; the first device and the second device belong to the same device cluster to be authenticated;
The information sending module is used for sending the equipment information of the first equipment and the equipment information of the second equipment to a server so that the server can carry out batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and after the authentication passes, a connection certificate of the second equipment is generated;
And the first sending module is used for sending the connection certificate of the second equipment returned by the server to the second equipment so that the second equipment can be connected with the server according to the connection certificate.
In a fourth aspect, the present application also provides another device processing apparatus, applied to a server, including:
The second receiving module is used for receiving the equipment information of the first equipment and the equipment information of the second equipment, which are sent by the first equipment; the device information of the second device is sent to the first device by the second device, and the first device and the second device belong to the same device cluster to be authenticated;
the information authentication module is used for carrying out batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
And the second sending module is used for sending the connection certificate of the second equipment to the first equipment so that the first equipment can send the connection certificate of the second equipment to the second equipment, and the second equipment can be connected with the server according to the connection certificate.
In a fifth aspect, the present application further provides a device processing system, where the system includes a first device, a second device, and a server, where the first device and the second device belong to the same device cluster to be authenticated;
the second device is configured to send device information of the second device to the first device;
The first device is configured to receive device information of the second device, and send the device information of the first device and the device information of the second device to a server;
The server is used for carrying out batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
the first device is further configured to send a connection credential of the second device returned by the server to the second device, so that the second device connects to the server according to the connection credential.
In a sixth aspect, the present application also provides a computer device comprising a memory and a processor, the memory storing a computer program, the processor implementing the following steps when executing the computer program:
receiving device information of a second device; the first device and the second device belong to the same device cluster to be authenticated;
Transmitting the equipment information of the first equipment and the equipment information of the second equipment to a server so that the server can perform batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
And sending the connection certificate of the second equipment returned by the server to the second equipment so that the second equipment can be connected with the server according to the connection certificate.
In a seventh aspect, the present application also provides a computer readable storage medium having stored thereon a computer program which when executed by a processor performs the steps of:
receiving device information of a second device; the first device and the second device belong to the same device cluster to be authenticated;
Transmitting the equipment information of the first equipment and the equipment information of the second equipment to a server so that the server can perform batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
And sending the connection certificate of the second equipment returned by the server to the second equipment so that the second equipment can be connected with the server according to the connection certificate.
In an eighth aspect, the application also provides a computer program product comprising a computer program which, when executed by a processor, performs the steps of:
receiving device information of a second device; the first device and the second device belong to the same device cluster to be authenticated;
Transmitting the equipment information of the first equipment and the equipment information of the second equipment to a server so that the server can perform batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
And sending the connection certificate of the second equipment returned by the server to the second equipment so that the second equipment can be connected with the server according to the connection certificate.
The device processing method, the device, the system, the computer device, the storage medium and the computer program product are characterized in that the device information of the second device sent by the second device belonging to the same device cluster to be authenticated with the first device is received through the first device, then the device information of the first device and the device information of the second device are uniformly sent to the server, the server performs batch authentication on the device information of the first device and the device information of the second device, after the authentication is passed, a connection certificate of the second device is generated, and finally the connection certificate of the second device returned by the server is sent to the second device, so that the second device can be connected with the server according to the connection certificate. In the whole authentication process, the first equipment sends the equipment information of the first equipment and the equipment information of the second equipment in the same equipment cluster to be authenticated to the server at one time, the server performs unified authentication, after the authentication is passed, the second equipment only needs to use the connection credentials of the second equipment sent by the server forwarded by the first equipment to connect with the server, and the server does not need to repeatedly execute equipment authentication processes, namely, batch equipment authentication can be completed through one-time request authentication, and each equipment does not need to interact with the server for multiple times, so that the batch equipment authentication process is simplified, a large amount of authentication time is saved, and the authentication efficiency of batch equipment is further improved.
Drawings
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the related art, the drawings that are required to be used in the embodiments or the related technical descriptions will be briefly described, and it is apparent that the drawings in the following description are only some embodiments of the present application, and other drawings may be obtained according to the drawings without inventive effort for those skilled in the art.
FIG. 1 is an application environment diagram of a device processing method in one embodiment;
FIG. 2 is a flow diagram of a device processing method in one embodiment;
FIG. 3 is an interface diagram of triggering a batch networking request in one embodiment;
FIG. 4 is a flowchart illustrating steps for transmitting device information of a first device and device information of a second device to a server in one embodiment;
FIG. 5 is a flow chart of a device processing method according to another embodiment;
FIG. 6 is a flow chart of a method of processing a device in yet another embodiment;
FIG. 7 is a flow diagram of a batch device authentication method in one embodiment;
FIG. 8 is a block diagram of the apparatus processing device in one embodiment;
FIG. 9 is a block diagram of a device processing apparatus in another embodiment;
FIG. 10 is a block diagram of a device processing system in one embodiment;
FIG. 11 is an internal block diagram of a computer device in one embodiment;
fig. 12 is an internal structural view of a computer device in another embodiment.
Detailed Description
The present application will be described in further detail with reference to the drawings and examples, in order to make the objects, technical solutions and advantages of the present application more apparent. It should be understood that the specific embodiments described herein are for purposes of illustration only and are not intended to limit the scope of the application.
It should be noted that, the user information (including but not limited to user equipment information, user personal information, etc.) and the data (including but not limited to data for analysis, stored data, presented data, etc.) related to the present application are both information and data authorized by the user or sufficiently authorized by each party, and the collection, use and processing of the related data are required to meet the related regulations.
The device processing method provided by the embodiment of the application can be applied to an application environment shown in figure 1. Wherein the first device 101 and the second device 102 each communicate with the server 103 and the third device 104 via a wireless network (e.g., WIFI, ZIGBEE, etc.), and the third device 104 also communicates with the server 103 via a wireless network (e.g., 2G, 3G, 4G, 5G, WIFI, etc.). For example, referring to fig. 1, in the case where the third device 104 triggers the batch authentication request, the first device 101 receives the device information of the second device 102 transmitted by the second device 102 belonging to the same device cluster to be authenticated as the first device 101, and transmits the device information of the first device 101 and the device information of the second device 102 to the server 103. The server 103 authenticates the device information of the first device 101 and the device information of the second device 102 at the same time, and generates a connection credential of the second device 102 after the authentication is passed, and transmits the connection credential of the second device 102 to the first device 101. The first device 101 sends the connection credentials of the second device 102 to the second device 102. The second device 102 connects to the server 103 according to the connection credentials of the second device 102.
The first device 101 refers to a device to be authenticated (i.e., a master device in a device cluster to be authenticated), and may be, but not limited to, various smart home devices, such as an intelligent gateway, an intelligent television, an intelligent sound box, an intelligent air conditioner, an intelligent fan, an intelligent refrigerator, an intelligent socket, an intelligent switch, an intelligent sensor, and the like. The second device 102 also refers to a device to be authenticated (i.e., other devices in a cluster of devices to be authenticated), and may be, but not limited to, various smart home devices, such as smart gateways, smart televisions, smart speakers, smart air conditioners, smart fans, smart refrigerators, smart sockets, smart switches, smart sensors, etc. The server 103 refers to a cloud server, and may be implemented by a stand-alone server or a server cluster formed by a plurality of servers. The first device 101 and the second device 102 may be the same type of device (for example, the first device 101 and the second device 102 are both intelligent gateways), or may be different types of devices (for example, the first device 101 is an intelligent gateway, the second device 102 is an intelligent switch), and the number of the second devices 102 may be one or more, and when the number of the second devices 102 is a plurality of the second devices 102, the plurality of second devices 102 may be the same type of device, or may be different types of devices. The third device 104 refers to a terminal used by a user, and the terminal may be, but not limited to, various personal computers, notebook computers, smartphones, tablet computers, and portable wearable devices, which may be smart watches, smart bracelets, headsets, and the like.
It should be noted that the application can be applied to various batch equipment authentication scenes, and is not limited to authentication and network access of intelligent home equipment.
In an exemplary embodiment, as shown in fig. 2, there is provided an apparatus processing method, which is described by taking an example that the method is applied to the first apparatus in fig. 1, including the following steps S201 to S203. Wherein:
step S201, receiving device information of a second device; the first device and the second device belong to the same device cluster to be authenticated.
The first device is a master control device in the device cluster to be authenticated, and is used as an interaction port of the device cluster to be authenticated, and is used for interacting with the server so as to realize authentication of the whole device cluster to be authenticated. The number of the first devices is 1, which can be determined by a mode of specifying in advance, for example, a certain device in the device cluster to be authenticated is specified in advance in a third device (namely, a terminal) to be authenticated to be used as the first device, or when all devices in the device cluster to be authenticated are of different types, the device with the optimal or better resource configuration information in the device cluster to be authenticated can be automatically screened out to be used as the first device; of course, if each device in the device cluster to be authenticated is of the same type, one device is randomly selected from each device in the device cluster to be authenticated as the first device.
The second device refers to a device in the device cluster to be authenticated, except for the master control device, that is, the number of other devices is usually a plurality of devices, and may refer to a device in the device cluster to be authenticated, where the corresponding resource configuration information is worse than that of the first device, or may be a device in which the resource configuration information is the same as that of the first device.
The device cluster to be authenticated refers to batch devices to be authenticated, which are formed by the first device and the second device, and may refer to a device cluster formed by all devices to be accessed to the network in a certain period of time before a batch access request is initiated. In addition, for better security or real-time considerations, limitations may be placed on the number of batch devices or time window, such as limiting the timeliness of the batch access information collection. The batch networking information set refers to an information set formed by combining equipment information of the first equipment and equipment information of the second equipment; the timeliness of the batch networking information set refers to the effective time of the batch networking information set, namely, the batch networking information set is effective in a certain effective time, and the fact that the authentication flow of the batch equipment must be completed in the effective time is indicated; if the valid time is exceeded, the batch network access information set is invalid, and the batch equipment authentication is failed.
It should be noted that the master device is essentially a device to be authenticated, and is merely used as a proxy device to communicate with the server, and other devices indirectly communicate with the cloud server through the master device.
Wherein, the device information of the second device is used for representing attribute information of the second device, and the device information can comprise a device identifier and other necessary information of the device; the device identification of the second device refers to a device unique identification, such as a device MAC address (Medium Access Control, physical address). The other device-necessary information of the second device refers to necessary information other than the device identification of the second device, such as a device ID (Identity), a device KEY (KEY), and the like, in the authentication process of the second device.
In an exemplary case, when the third device triggers a batch authentication request for the device cluster to be authenticated, a second device in the device cluster to be authenticated acquires device information of the second device and sends the device information of the second device to a first device in the device cluster to be authenticated; the first device receives the device information of the second device, so that the device information of the first device and the device information of the second device can be conveniently and sequentially sent to the server at one time.
Step S202, the device information of the first device and the device information of the second device are sent to the server, so that the server can simultaneously authenticate the device information of the first device and the device information of the second device, and after the authentication is passed, a connection certificate of the second device is generated.
The device information of the first device is used for representing attribute information of the first device and also comprises a device identifier and other necessary information of the device; the device identification of the first device also refers to a device unique identification, such as a device MAC address (Medium Access Control, physical address). The other device-necessary information of the first device also refers to necessary information other than the device identification of the first device, such as a device ID (Identity), a device KEY (KEY), and the like, in the authentication process of the first device.
The authentication of the device information of the first device and the device information of the second device is mainly used for verifying the validity of the device information of the first device and the validity of the device information of the second device. And if the equipment information of the first equipment and the equipment information of the second equipment are legal, the authentication is passed.
The connection certificate of the second device refers to a network access certificate of the second device, and specifically refers to a network access unique authorization code, such as a network access Token. It should be noted that the connection credential of the second device may be represented by a character string, such as 135478, 1EG0Y7, etc., and have a default validity period, such as 5 minutes. Furthermore, the connection credentials are different for each second device.
The first device, after receiving the device information of the second device, collects the device information of the first device, then combines the device information of the first device and the device information of the second device to obtain a device information set, and sends the device information set to the corresponding server at one time. The server performs unified authentication on the device information set, for example, verifies whether the device information of the first device and the device information of the second device are legal, if so, confirms that the authentication is passed, and generates a connection credential of the second device, for example, randomly generates the connection credential of the second device, or generates the connection credential of the second device according to the device information of the second device.
Step S203, the connection certificate of the second device returned by the server is sent to the second device, so that the second device can connect with the server according to the connection certificate.
And when the server verifies that the connection certificate of the second device is the same as the connection certificate of the second device previously generated by the server, the server agrees with the connection request of the second device, so that the second device is connected with the server, namely the network access is successful.
Wherein the first device and the second device belong to the same local area network.
For example, in the technical field of smart home, an intelligent gateway with WIFI and ZIGBEE needs to perform a network access configuration operation, so that the intelligent gateway is connected to a network, and meanwhile, association binding with a user account of a certain terminal is completed, so that the intelligent gateway and ZIGBEE devices (such as an intelligent air conditioner, an intelligent switch, an intelligent socket, and the like) in the ZIGBEE network can be controlled through the terminal. The known intelligent gateway performs a network access process, namely the intelligent gateway is configured one by one through a terminal, and the intelligent gateway is connected with a router and a network after receiving configuration information, so that network access processes such as registration, account binding and the like of the intelligent gateway are completed. When more intelligent gateways are to be connected to the network, each intelligent gateway is required to be respectively communicated with the cloud server in the whole authentication process, and multiple request verification needs to be carried out, so that in a scene of mass intelligent gateway authentication, the steps of network connection operation for a plurality of intelligent gateways are very many, the operation time is long, the efficiency is low, and meanwhile, a certain security risk exists. In the application, only one-time request verification is needed, thereby saving a great amount of network access time of equipment; meanwhile, in the local area network, the connection credentials of the second equipment are distributed to the corresponding second equipment, so that the authentication security is improved, and the equipment processing method provided by the application is efficient and safe.
The first device receives the connection certificate of the second device returned by the server, and distributes the connection certificate of the second device to the corresponding second device in the same local area network. The second device requests to establish connection with the server according to the connection certificate of the second device; after the connection certificate of the second device is verified by the server, establishing connection with the second device so that the second device is connected with the server; for example, when the server identifies that the connection credential of the second device is the same as the connection credential of the second device previously generated by the server, it is confirmed that the connection credential of the second device is verified.
In the device processing method, device information of the second device sent by the second device belonging to the same device cluster to be authenticated as the first device is received by the first device, then the device information of the first device and the device information of the second device are uniformly sent to the server, so that the server can perform batch authentication on the device information of the first device and the device information of the second device, after the authentication is passed, a connection certificate of the second device is generated, and finally the connection certificate of the second device returned by the server is sent to the second device, so that the second device can be connected with the server according to the connection certificate. In the whole authentication process, the first equipment sends the equipment information of the first equipment and the equipment information of the second equipment in the same equipment cluster to be authenticated to the server at one time, the server performs unified authentication, after the authentication is passed, the second equipment only needs to use the connection credentials of the second equipment sent by the server forwarded by the first equipment to connect with the server, and the server does not need to repeatedly execute equipment authentication processes, namely, batch equipment authentication can be completed through one-time request authentication, and each equipment does not need to interact with the server for multiple times, so that the batch equipment authentication process is simplified, a large amount of authentication time is saved, and the authentication efficiency of batch equipment is further improved.
In an exemplary embodiment, the step S201 further includes the following before receiving the device information of the second device: and transmitting the device address of the first device to the second device so that the second device can transmit the device information of the second device to the first device according to the device address.
Wherein the device address of the first device refers to a physical address of the first device, such as a device MAC address.
Illustratively, after determining the first device from the cluster of devices to be authenticated, the first device sends the device address of the first device to the second device over the local area network; and the second equipment acquires the equipment information of the second equipment after receiving the equipment address of the first equipment, and sends the equipment information of the second equipment to the first equipment according to the equipment address of the first equipment.
In this embodiment, the device address of the first device is sent to the second device, so that the second device sends the device information of the second device to the first device according to the device address of the first device, so that the device information of the first device and the device information of the second device can be conveniently and once sent to the server for authentication through the first device, and each device to be authenticated does not need to send the respective device information to the server, thereby reducing interaction steps between the devices and the server, simplifying a batch device authentication process, and further improving batch device authentication efficiency.
In an exemplary embodiment, before the device address of the first device is sent to the second device, the method further includes: responding to a batch authentication request aiming at a device cluster to be authenticated, and acquiring resource configuration information broadcasted by each device in the device cluster to be authenticated; and determining the equipment meeting the preset condition from the equipment according to the resource configuration information of the equipment, and taking the equipment as the first equipment.
The batch authentication request refers to a batch network access request. For example, referring to fig. 3, on the device authentication interface displayed by the third device, the gateway 1, the gateway 2 and the gateway 3 form a device cluster to be authenticated, and the user clicks the "bulk operation" button, so that a bulk authentication request for the gateway 1, the gateway 2 and the gateway 3 can be triggered, that is, a bulk authentication request for the device cluster to be authenticated is triggered.
The resource configuration information refers to performance information, such as processing performance, network performance, storage performance, and the like.
The device meeting the preset condition (i.e., the first device) refers to a device, in which resource configuration information in the device cluster to be authenticated meets the preset condition. For example, when each device in the device cluster to be authenticated is of a different model, the device with the resource configuration information meeting the preset condition refers to the device with the optimal or better resource configuration information, specifically the device with the optimal or better processing performance, the device with the optimal or better network performance, the device with the optimal or better storage performance, and the like. For example, when the devices in the device cluster to be authenticated are the same type, the device whose resource configuration information satisfies the preset condition refers to a device selected randomly from the devices in the device cluster to be authenticated. Of course, the first device may also be determined by means of an early assignment, for example, a certain device of the device cluster to be authenticated is early assigned as the first device in the third device (i.e. the terminal).
For example, referring to fig. 3, on a device authentication interface displayed by the third device, the third device generates a batch authentication request for a cluster of devices to be authenticated in response to a batch authentication operation triggered by a user and directed to the cluster of devices to be authenticated (including gateway 1, gateway 2, gateway 3, etc.), and sends the batch authentication request for the cluster of devices to be authenticated to each device to be authenticated in the cluster of devices to be authenticated. After each device to be authenticated receives the batch authentication request, acquiring the resource configuration information of the device, broadcasting the resource configuration information of the device to other devices to be authenticated in the device to be authenticated cluster (namely, the devices to be authenticated except the device in the device to be authenticated cluster) through the local area network, and simultaneously receiving the resource configuration information of the other devices to be authenticated, which are broadcasted by the other devices to be authenticated. Through a resource configuration information broadcasting mode, each device to be authenticated can acquire the resource configuration information of each device to be authenticated in the device cluster to be authenticated, and the first device can be determined from each device to be authenticated according to the resource configuration information of each device to be authenticated. If a certain device to be authenticated determines the device with the optimal or better resource configuration information from each device to be authenticated in the device cluster to be authenticated according to the resource configuration information of each device to be authenticated, determining the device with the optimal or better resource configuration information as the first device, and broadcasting the message of determining the device as the first device to the device. Then, in the device cluster to be authenticated, the device is the first device, and the other devices are the second devices. Next, the first device sends a device address of the first device to the second device through the local area network; and the second equipment acquires the equipment information of the second equipment after receiving the equipment address of the first equipment, and sends the equipment information of the second equipment to the first equipment according to the equipment address.
In an exemplary case that the first device is selected in advance, the second device sends the device information of the second device to the first device according to the device address of the first device carried in the received batch authentication request. And the first device waits to receive the device information of the second device after receiving the batch authentication request.
In this embodiment, after a batch authentication request for a device cluster to be authenticated is received, according to resource configuration information broadcast by each device in the device cluster to be authenticated, a device meeting a preset condition is determined from each device, and is used as a first device, so that subsequent device information of a second device is conveniently received through the first device, and the device information of the first device and the device information of the second device are uniformly sent to a server for authentication, which is beneficial to simplifying a batch device authentication process, thereby improving the batch device authentication efficiency, and simultaneously avoiding the defect that the batch device authentication process is complicated because each device information is sent to the server through each device to be authenticated.
In an exemplary embodiment, as shown in fig. 4, step S202 described above, the device information of the first device and the device information of the second device are sent to the server, and specifically includes steps S401 to S403. Wherein:
step S401, obtaining a device account number of a third device and a server address of a server; the third device is used for representing the device corresponding to the device account number to be associated with the first device and the second device.
Step S402, a batch authentication request message is generated according to the device information of the first device, the device information of the second device, the device account number and the server address.
Step S403, a batch authentication request message is sent to a server; the server is used for carrying out batch authentication on the equipment information of the first equipment and the equipment information of the second equipment according to the batch authentication request message, associating the first equipment and the second equipment with the equipment account after the authentication is passed, and generating a connection certificate of the second equipment.
The device account number of the third device refers to a login account number of the third device, that is, an account number of a user to whom the third device belongs. It should be noted that, both the device account number of the third device and the server address of the server may be transmitted to the first device by the third device. It should be noted that, the third device is mainly configured to provide the device account number to be associated with the first device and the second device, for example, bind the device account number with the first device and the second device.
The batch authentication request message refers to a batch network access request message.
The association between the first device and the second device and the device account refers to association binding between the first device and the device account, and association binding between the second device and the device account.
In the authentication of the device information of the first device and the device information of the second device, various validity verification algorithms may be used, and the present application is not limited thereto.
The first device receives a device account number of the third device and a server address of the server, which are sent by the third device, then combines the device information of the first device and the device information of the second device, which are obtained before, with the device account number and the server address to obtain a batch authentication request message, and then sends the batch authentication request message to a corresponding server according to the server address in the batch authentication request message; the server analyzes the received batch authentication request message to obtain the device information of the first device, the device information of the second device and the device account number, then verifies the legality of the device information of the first device and the device information of the second device in batches, confirms that the device information of the first device and the device information of the second device pass verification under the condition that the device information of the first device and the device information of the second device are legal, carries out association binding on the first device and the device account number, carries out association binding on the second device and the device account number, and simultaneously generates a connection certificate of each second device, such as a unique authorization code of a network of each second device.
In this embodiment, the device information of the first device, the device information of the second device, the device account number and the server address text are sent to the server through the first device, the device information of the first device and the device information of the second device are authenticated by the server in a unified manner, the first device and the second device are associated with the device account number, connection credentials of the second device are generated, and the subsequent second device can be connected to the server according to the connection credentials; in this way, in the whole authentication process, each device does not need to be authenticated independently, namely, each device does not need to execute a complete authentication process, so that a large amount of authentication time is saved, and the authentication efficiency of batch devices is further improved.
In an exemplary embodiment, the step S203 further includes the following before sending the connection credential of the second device returned by the server to the second device: receiving a batch authentication result message returned by the server; the batch authentication result message is obtained by extracting the equipment identifier of the second equipment from the equipment information of the second equipment by the server and generating according to the equipment identifier and the connection certificate of the second equipment; splitting the batch authentication result messages to obtain authentication result messages of the second equipment; the authentication result message of the second device at least comprises the device identifier and the connection certificate of the second device.
The batch authentication result message refers to a batch network access request result message, and the batch authentication result message is in a format of ("second device 1": connection credential 1"," second device 2": connection credential 2" … … "second device n": connection credential n "), for example (" MAC1": xxxx1", "MAC2": xxxx 2"… …" MACn ": XXXXXn"). Wherein MACn represents the MAC address of each second device and XXXXXn represents the network entry unique authorization code of each second device.
The authentication result message of the second device refers to a single network access request result message, and the format of the authentication result message is ("second device n": "connection credential n"), such as ("MACn": "XXXXXn").
After generating the connection credentials of each second device, the server extracts the device identifier of each second device from the device information of each second device according to the device identifier extraction instruction, then generates a batch authentication result message based on the device identifier and the connection credentials of each second device according to the second device arrangement sequence, and sends the batch authentication result message to the first device. The first equipment analyzes the received batch authentication result message to obtain an authentication result message of each second equipment, wherein the authentication result message at least comprises the equipment identification and the connection certificate of the second equipment. For example, if the batch authentication result message is "MAC1": "xxxx 1", "MAC2": "xxxx 2" … … "MACn": "XXXXXn"), then the authentication result message for each second device is "MACn": "XXXXXn").
In this embodiment, the batch authentication result message returned by the server is split to obtain the authentication result message of the second device, which is favorable for distributing the authentication result message of the second device to the corresponding second device through the first device, so that the second device is convenient for connecting with the server according to the authentication result message, and is favorable for omitting a large number of repeated authentication steps, thereby improving the authentication efficiency of the batch device. Meanwhile, the authentication result message of the second device is distributed to the second device through the first device, so that the transmission safety of the authentication result message can be ensured, and the authentication safety of the batch devices is further improved.
In an exemplary embodiment, splitting the batch authentication result message to obtain an authentication result message of the second device, which specifically includes the following contents: splitting the batch authentication result message to obtain a device identifier and a connection certificate of the second device; and combining the equipment identifier, the connection certificate and the server address of the server of the second equipment to obtain an authentication result message of the second equipment.
The format of the authentication result message of the second device may be further expressed as ("second device n": "connection credential n", "server address"), such as ("MACn": "XXXXXn", "CloudIp": "xxx. Xx"). Wherein CloudIp denotes a server address.
Illustratively, the first device splits the received batch authentication result message to obtain a device identifier and a connection credential of each second device; and then combining the equipment identifier and the connection certificate of each second equipment with the server address of the server to obtain the combined information of each second equipment, and correspondingly serving as an authentication result message of the second equipment. For example, if the batch authentication result message is ("MAC 1": "xxxx 1", "MAC2": "xxxx 2" … … "MACn": "XXXXXn"), then the authentication result message for each second device is ("MACn": "XXXXXn", "CloudIp": "xxx.xxx.xxx.xx").
In this embodiment, when the authentication result message of the second device is generated, in addition to considering the device identifier and the connection credential of the second device, a server address is also considered, so that after the subsequent second device receives the authentication result message, the subsequent second device can request to connect to a corresponding server according to the server address, thereby ensuring smooth execution of the internet surfing process of the second device.
In an exemplary embodiment, the connection certificate of the second device returned by the server is sent to the second device, which specifically includes the following contents: identifying the equipment identification of the second equipment from the authentication result message of the second equipment; according to the equipment identification of the second equipment, sending an authentication result message of the second equipment to the second equipment so that the second equipment can send a connection request carrying the equipment identification of the second equipment and a connection certificate to a server according to the server address in the authentication result message; the server is configured to establish a connection with the second device after the connection credential is validated according to the device identification.
Wherein the connection request refers to a network access request, which contains the device identification of the second device and the connection credentials for establishing a connection with the server.
The verification of the connection credential refers to performing validity verification on the connection credential, for example, verifying whether the connection credential of the second device is identical to the connection credential of the second device generated before the server.
The first device, according to the device identification instruction, identifies the device identification of the second device, such as the physical address of the second device, from the authentication result message of the second device, and then sends the authentication result message of each second device to the corresponding second device based on the device identification of each second device through the local area network. The second device analyzes the received authentication result message to obtain a device identifier, a connection certificate and a server address of the second device, generates a connection request of the second device according to the device identifier and the connection certificate of the second device, and then sends the connection request of the second device to a corresponding server according to the server address. The server analyzes the received connection request to obtain an analyzed device identifier and an analyzed connection certificate, queries the connection certificate of the second device generated before according to the analyzed device identifier to obtain a connection certificate corresponding to the analyzed device identifier, and if the connection certificate is the same as the analyzed connection certificate, the analyzed connection certificate passes verification and agrees with the connection request of the second device, so that the second device can be connected with the server, namely network access is successful.
In this embodiment, the first device sends the authentication result message of the second device to the corresponding second device according to the device identifier of the second device, so that the second device sends the connection request carrying the device identifier of the second device and the connection credential to the server according to the server address, so that the server can verify the connection credential of the second device according to the device identifier of the second device, and after the verification passes, connection is established with the second device. Therefore, after the server verifies that the equipment information of the first equipment and the equipment information of the second equipment pass, the second equipment only needs to be connected with the server according to the self connection certificate, and each equipment does not need to interact with the server for a plurality of times, so that the authentication flow of the batch equipment is simplified, and the authentication efficiency of the batch equipment is improved.
In an exemplary embodiment, as shown in fig. 5, another device processing method is provided, and an example of application of the method to the server in fig. 1 is described, including the following steps S501 to S503. Wherein:
Step S501, receiving device information of a first device and device information of a second device, which are sent by the first device; and the device information of the second device is sent to the first device by the second device, and the first device and the second device belong to the same device cluster to be authenticated.
Step S502, performing batch authentication on the device information of the first device and the device information of the second device, and generating a connection certificate of the second device after the authentication is passed.
Step S503, the connection certificate of the second device is sent to the first device, so that the first device sends the connection certificate of the second device to the second device, and the second device is connected to the server according to the connection certificate.
It should be noted that, the processing procedure of the present embodiment may refer to the related embodiments of the device processing method applied to the first device, which is not described herein.
According to the device processing method, the device information of the first device and the device information of the second device, which are sent by the first device, are uniformly received through the server, then the device information of the first device and the device information of the second device are subjected to batch authentication, after the authentication is passed, the connection certificate of the second device is generated, and finally the connection certificate of the second device is sent to the first device so that the first device can send the connection certificate of the second device to the second device, and the second device can be connected with the server according to the connection certificate. In the whole authentication process, the first equipment sends the equipment information of the first equipment and the equipment information of the second equipment in the same equipment cluster to be authenticated to the server at one time, the server performs unified authentication, after the authentication is passed, the second equipment only needs to use the connection credentials of the second equipment sent by the server forwarded by the first equipment to connect with the server, and the server does not need to repeatedly execute equipment authentication processes, namely, batch equipment authentication can be completed through one-time request authentication, and each equipment does not need to interact with the server for multiple times, so that the batch equipment authentication process is simplified, a large amount of authentication time is saved, and the authentication efficiency of batch equipment is further improved.
In an exemplary embodiment, step S503 above further includes, after sending the connection credential of the second device to the first device, for the first device to send the connection credential of the second device to the second device, enabling the second device to connect to the server according to the connection credential: generating a connection result of the second device; transmitting a connection result of the second device to the second device, so that the second device transmits the connection result of the second device to the third device; and the third equipment is used for summarizing the connection result of the first equipment and the connection result of the second equipment to obtain a batch authentication result of the equipment cluster to be authenticated.
The connection result of the first device refers to authentication and networking results of the first device. The connection result of the second device refers to authentication and networking results of the second device.
If the first device receives the batch authentication result message returned by the server, it indicates that the authentication and network access of the first device are successful, and a connection result of the first device can be generated.
The batch authentication result of the equipment cluster to be authenticated refers to batch authentication and networking results of the equipment cluster to be authenticated.
The server generates a connection result of the second device after establishing a connection with the second device, and sends the connection result of the second device to the second device; the second device sends the connection result of the second device to the third device. In addition, after receiving the batch authentication result message returned by the server, the first device generates a connection result of the first device, and sends the connection result of the first device to the third device. And the third equipment gathers the connection result of the first equipment and the connection result of the second equipment to obtain a summarized result, and the summarized result is used as a batch authentication result of the equipment cluster to be authenticated, such as successful network access of the gateway 1, successful network access of the gateway 2, successful network access of the gateway 3 and the like.
In this embodiment, the third device gathers the connection result of the first device and the connection result of the second device, so as to obtain a batch authentication result of the device cluster to be authenticated, which is favorable for knowing the authentication condition of each device in time.
In an exemplary embodiment, as shown in fig. 6, there is provided yet another device processing method, which is described by taking an example that the method is applied to the first device in fig. 1, including the following steps S601 to S611. Wherein:
Step S601, acquiring resource configuration information of a first device in response to a batch authentication request for a device cluster to be authenticated sent by a third device; the device cluster to be authenticated comprises a first device and a second device.
Step S602, the device address of the first device is sent to the second device, so that the second device sends the device information of the second device to the first device according to the device address.
Step S603, receiving device information of the second device.
In step S604, the device account number of the third device and the server address of the server are obtained.
Step S605 generates a batch authentication request message according to the device information of the first device, the device information of the second device, the device account number and the server address.
Step S606, a batch authentication request message is sent to a server; the server is used for carrying out batch authentication on the equipment information of the first equipment and the equipment information of the second equipment according to the batch authentication request message, associating the first equipment and the second equipment with the equipment account after the authentication is passed, and generating a connection certificate of the second equipment.
Step S607, receiving a batch authentication result message returned by the server; and the batch authentication result message is obtained by extracting the equipment identifier of the second equipment from the equipment information of the second equipment through the server and generating according to the equipment identifier and the connection certificate of the second equipment.
Step S608, splitting the batch authentication result message to obtain the equipment identifier of the second equipment and the connection certificate corresponding to the equipment identifier.
Step S609, the device identification, the connection certificate and the server address of the server of the second device are combined to obtain an authentication result message of the second device.
Step S610, identify the device identifier of the second device from the authentication result message of the second device.
Step S611, according to the device identifier of the second device, sending an authentication result message of the second device to the corresponding second device, so that the second device sends a connection request carrying the device identifier and the connection certificate of the second device to the server according to the server address in the authentication result message; the server is configured to establish a connection with the second device after the connection credential is validated according to the device identification.
According to the equipment processing method, equipment information of the first equipment and equipment information of the second equipment in the same equipment cluster to be authenticated are sent to the server through the first equipment in the whole authentication process, unified authentication is carried out by the server, after authentication is passed, the second equipment only needs to use the connection credentials of the second equipment sent by the server and forwarded by the first equipment to connect with the server, the equipment authentication process is not required to be repeatedly executed for a plurality of times, namely, authentication can be completed through one-time request, and interaction between each equipment and the server is not required for a plurality of times, so that the equipment authentication process is simplified, a large amount of authentication time is saved, and the authentication efficiency of the equipment is improved.
In an exemplary embodiment, in order to more clearly illustrate the device processing method provided in the embodiment of the present application, a specific embodiment is described below specifically. In one embodiment, referring to fig. 7, the present application further provides a batch device authentication method. Referring to fig. 7, after all the device information to be networked is collected, the device information is sent to the cloud server for verification once, and after the verification is completed (i.e. the devices obtain credentials capable of being networked), the device information is broadcasted to other devices to be networked by the master device; therefore, through one-time request verification, other devices to be networked are directly connected with the cloud server after verification is passed, and the complete networking process is not required to be re-authenticated and executed.
Referring to fig. 7, in the process of batch device authentication, one of the devices is selected as a master device; the condition of selecting the master control equipment is that the equipment has better or even best resource configuration information in the batch network access equipment at the present time, so that the discovered batch network access equipment list can be manually set after the batch equipment starts a network access command, more intelligently, the batch equipment self-elects the equipment with the best resource configuration information as the master control equipment, for example, the equipment with the best resource configuration information is broadcasted to other equipment in a broadcasting mode, and then the equipment with the best resource configuration information is finally winched by the equipment with the best resource configuration information. The master control equipment carries authentication information of other equipment to be accessed to the network to connect the cloud server for batch authentication; in the authentication process, the cloud server authenticates the batch of equipment information, and an information set (including information such as equipment unique identification information (MAC) address, equipment network access unique authorization code, cloud server address and the like) for batch network access is generated after the authentication; after receiving the authentication information set, the master control equipment broadcasts and distributes the networking information to other equipment in the local area network, and other equipment to be networked directly accesses the cloud server through the Internet of things protocol after receiving the networking information corresponding to the master control equipment, so that re-authentication is not needed; thus, the authentication process of the whole batch equipment is completed. The specific flow is as follows:
(1) A user initiates a batch network access request through operating an APP (Application); the batch network access request is a request that a batch of devices manually trigger network access within a certain time window, for example, within five minutes, and then after the APP initiates the network access request, the batch network access device information list is acquired in the local area network, and specifically, refer to fig. 3.
(2) All devices enter a distribution mode in which the other devices send respective device information to the master device, wherein the device information contains the device MAC address and other device necessary information (if any), such as device ID, device KEY, etc.
(3) The master control equipment receives the equipment information of other equipment, and adds the own equipment information of the master control equipment and the related detailed information of the account number bound by the equipment.
(4) The method comprises the steps that the master control equipment sends a batch networking request message to the cloud server, and the networking request message of the master control equipment comprises: 1. a device information set of batch devices; 2. user account information (account to which the device will bind); 3. the connection address of the cloud server (transmitted to the master device via the APP).
(5) And the cloud server verifies the networking information of the batch of equipment (such as verifying the validity of the equipment information), binds account information and generates a networking unique authorization code of each equipment.
(6) And the cloud server returns a batch networking request result message to the main control equipment.
(7) The main control equipment disassembles the request result message into a plurality of single messages and distributes the single messages to the corresponding equipment through the local area network.
(8) Each device except the main control device is connected with the cloud server according to the connection address of the cloud server, and the carried network access message comprises a device MAC address and a network access unique authorization code.
(9) And the cloud server checks the validity of the carried network access unique authorization code, and if the network access unique authorization code is legal, the equipment authentication and network access success are confirmed.
(10) And the cloud server returns an authentication result to each network-accessed device.
(11) The network-connected equipment returns the result to the APP.
(12) APP summarizes the network access authentication result of batch equipment.
Compared with the common single equipment for authentication (one-time network access process of each equipment in the prior art, multiple requests and interactions between the equipment and the cloud server are needed), the batch equipment authentication method can finish batch equipment authentication only by one-time request verification, and is beneficial to saving a large amount of network access time of users; moreover, the network access information is distributed in the local area network, so that the safety is greatly improved, and the high efficiency and safety of the batch equipment authentication process are ensured.
It should be understood that, although the steps in the flowcharts related to the embodiments described above are sequentially shown as indicated by arrows, these steps are not necessarily sequentially performed in the order indicated by the arrows. The steps are not strictly limited to the order of execution unless explicitly recited herein, and the steps may be executed in other orders. Moreover, at least some of the steps in the flowcharts described in the above embodiments may include a plurality of steps or a plurality of stages, which are not necessarily performed at the same time, but may be performed at different times, and the order of the steps or stages is not necessarily performed sequentially, but may be performed alternately or alternately with at least some of the other steps or stages.
Based on the same inventive concept, the embodiment of the application also provides a device processing device for realizing the above related device processing method. The implementation of the solution provided by the apparatus is similar to the implementation described in the above method, so the specific limitation of the embodiment of one or more apparatus processing apparatuses provided below may refer to the limitation of the apparatus processing method hereinabove, and will not be repeated herein.
In one exemplary embodiment, as shown in fig. 8, there is provided a device processing apparatus 800 comprising: a first receiving module 810, an information transmitting module 820, and a first transmitting module 830, wherein:
A first receiving module 810, configured to receive device information of a second device; the first device and the second device belong to the same device cluster to be authenticated.
The information sending module 820 is configured to send the device information of the first device and the device information of the second device to the server, so that the server performs batch authentication on the device information of the first device and the device information of the second device, and generates a connection credential of the second device after the authentication passes.
The first sending module 830 is configured to send the connection credential of the second device returned by the server to the second device, so that the second device connects to the server according to the connection credential.
In an exemplary embodiment, the device processing apparatus 800 further includes an address sending module, configured to send the device address of the first device to the second device, so that the second device sends the device information of the second device to the first device according to the device address.
In an exemplary embodiment, the device processing apparatus 800 further includes a device determining module, configured to obtain, in response to a batch authentication request for a device cluster to be authenticated, resource configuration information broadcast by devices in the device cluster to be authenticated; and determining the equipment meeting the preset condition from the equipment according to the resource configuration information of the equipment, and taking the equipment as the first equipment.
In an exemplary embodiment, the information sending module 820 is further configured to obtain a device account number of the third device and a server address of the server; the third device is used for representing the device corresponding to the device account number to be associated with the first device and the second device; generating a batch authentication request message according to the equipment information of the first equipment, the equipment information of the second equipment, the equipment account number and the server address; sending a batch authentication request message to a server; the server is used for carrying out batch authentication on the equipment information of the first equipment and the equipment information of the second equipment according to the batch authentication request message, associating the first equipment and the second equipment with the equipment account after the authentication is passed, and generating a connection certificate of the second equipment.
In an exemplary embodiment, the device processing apparatus 800 further includes a message splitting module, configured to receive a batch authentication result message returned by the server; the batch authentication result message is obtained by extracting the equipment identifier of the second equipment from the equipment information of the second equipment by the server and generating according to the equipment identifier and the connection certificate of the second equipment; splitting the batch authentication result messages to obtain authentication result messages of the second equipment; the authentication result message of the second device at least comprises the device identifier and the connection certificate of the second device.
In an exemplary embodiment, the message splitting module is further configured to split the batch authentication result message to obtain a device identifier and a connection credential of the second device; and combining the equipment identifier, the connection certificate and the server address of the server of the second equipment to obtain an authentication result message of the second equipment.
In an exemplary embodiment, the first sending module 830 is further configured to identify, from the authentication result packet of the second device, a device identifier of the second device; according to the equipment identification of the second equipment, sending an authentication result message of the second equipment to the second equipment so that the second equipment can send a connection request carrying the equipment identification of the second equipment and a connection certificate to a server according to the server address in the authentication result message; the server is configured to establish a connection with the second device after the connection credential is validated according to the device identification.
In an exemplary embodiment, as shown in fig. 9, there is also provided another device processing apparatus 900, comprising: a second receiving module 910, an information authentication module 920, and a second transmitting module 930, wherein:
A second receiving module 910, configured to receive device information of the first device and device information of the second device, where the device information is sent by the first device; and the device information of the second device is sent to the first device by the second device, and the first device and the second device belong to the same device cluster to be authenticated.
The information authentication module 920 is configured to perform batch authentication on the device information of the first device and the device information of the second device, and generate a connection credential of the second device after the authentication passes.
The second sending module 930 is configured to send the connection credential of the second device to the first device, so that the first device sends the connection credential of the second device to the second device, and the second device connects to the server according to the connection credential.
In an exemplary embodiment, the device processing apparatus 900 further includes a result sending module, configured to generate a connection result of the second device; transmitting a connection result of the second device to the second device, so that the second device transmits the connection result of the second device to the third device; and the third equipment is used for summarizing the connection result of the first equipment and the connection result of the second equipment to obtain a batch authentication result of the equipment cluster to be authenticated.
In an exemplary embodiment, as shown in fig. 10, there is further provided a device processing system 1000, where the system 1000 includes a first device 1010, a second device 1020, and a server 1030, where the first device 1010 and the second device 1020 belong to the same device cluster to be authenticated;
A second device 1020 for transmitting device information of the second device 1020 to the first device 1010;
A first device 1010 configured to receive device information of the second device 1020 and send the device information of the first device 1010 and the device information of the second device 1020 to the server 1030;
A server 1030 configured to perform batch authentication on the device information of the first device 1010 and the device information of the second device 1020, and generate a connection credential of the second device 1020 after the authentication is passed;
The first device 1010 is further configured to send the connection credential of the second device 1020 returned by the server 1030 to the second device 1020, so that the second device 1020 connects to the server 1030 according to the connection credential.
The various modules in the device processing apparatus described above may be implemented in whole or in part by software, hardware, and combinations thereof. The above modules may be embedded in hardware or may be independent of a processor in the computer device, or may be stored in software in a memory in the computer device, so that the processor may call and execute operations corresponding to the above modules.
In an exemplary embodiment, a computer device, which may be a terminal, is provided, and an internal structure thereof may be as shown in fig. 11. The computer device includes a processor, a memory, an input/output interface, a communication interface, a display unit, and an input means. The processor, the memory and the input/output interface are connected through a system bus, and the communication interface, the display unit and the input device are connected to the system bus through the input/output interface. Wherein the processor of the computer device is configured to provide computing and control capabilities. The memory of the computer device includes a non-volatile storage medium and an internal memory. The non-volatile storage medium stores an operating system and a computer program. The internal memory provides an environment for the operation of the operating system and computer programs in the non-volatile storage media. The input/output interface of the computer device is used to exchange information between the processor and the external device. The communication interface of the computer device is used for carrying out wired or wireless communication with an external terminal, and the wireless mode can be realized through WIFI, a mobile cellular network, NFC (near field communication) or other technologies. The computer program is executed by a processor to implement a device processing method. The display unit of the computer device is used for forming a visual picture, and can be a display screen, a projection device or a virtual reality imaging device. The display screen can be a liquid crystal display screen or an electronic ink display screen, and the input device of the computer equipment can be a touch layer covered on the display screen, can also be a key, a track ball or a touch pad arranged on the shell of the computer equipment, and can also be an external keyboard, a touch pad or a mouse and the like.
In one exemplary embodiment, another computer device is provided, which may be a server, the internal structure of which may be as shown in fig. 12. The computer device includes a processor, a memory, an Input/Output interface (I/O) and a communication interface. The processor, the memory and the input/output interface are connected through a system bus, and the communication interface is connected to the system bus through the input/output interface. Wherein the processor of the computer device is configured to provide computing and control capabilities. The memory of the computer device includes a non-volatile storage medium and an internal memory. The non-volatile storage medium stores an operating system, computer programs, and a database. The internal memory provides an environment for the operation of the operating system and computer programs in the non-volatile storage media. The database of the computer device is used for storing data such as device information of the first device, device information of the second device, connection credentials of the second device and the like. The input/output interface of the computer device is used to exchange information between the processor and the external device. The communication interface of the computer device is used for communicating with an external terminal through a network connection. The computer program is executed by a processor to implement a device processing method.
It will be appreciated by those skilled in the art that the structures shown in fig. 11 and 12 are merely block diagrams of portions of structures associated with the inventive arrangements and are not limiting of the computer device to which the inventive arrangements may be applied, and that a particular computer device may include more or fewer components than shown, or may combine certain components, or have a different arrangement of components.
In an exemplary embodiment, a computer device is also provided, comprising a memory and a processor, the memory having stored therein a computer program, the processor implementing the steps of the method embodiments described above when the computer program is executed.
In one exemplary embodiment, a computer-readable storage medium is provided, on which a computer program is stored which, when being executed by a processor, carries out the steps of the method embodiments described above.
In an exemplary embodiment, a computer program product is provided, comprising a computer program which, when executed by a processor, implements the steps of the method embodiments described above.
Those skilled in the art will appreciate that implementing all or part of the above described methods may be accomplished by way of a computer program stored on a non-transitory computer readable storage medium, which when executed, may comprise the steps of the embodiments of the methods described above. Any reference to memory, database, or other medium used in embodiments provided herein may include at least one of non-volatile and volatile memory. The nonvolatile Memory may include Read-Only Memory (ROM), magnetic tape, floppy disk, flash Memory, optical Memory, high density embedded nonvolatile Memory, resistive random access Memory (ReRAM), magneto-resistive random access Memory (Magnetoresistive Random Access Memory, MRAM), ferroelectric Memory (Ferroelectric Random Access Memory, FRAM), phase change Memory (PHASE CHANGE Memory, PCM), graphene Memory, and the like. Volatile memory can include random access memory (Random Access Memory, RAM) or external cache memory, and the like. By way of illustration, and not limitation, RAM can be in various forms such as static random access memory (Static Random Access Memory, SRAM) or dynamic random access memory (Dynamic Random Access Memory, DRAM), etc. The databases referred to in the embodiments provided herein may include at least one of a relational database and a non-relational database. The non-relational database may include, but is not limited to, a blockchain-based distributed database, and the like. The processor referred to in the embodiments provided in the present application may be a general-purpose processor, a central processing unit, a graphics processor, a digital signal processor, a programmable logic unit, a data processing logic unit based on quantum computing, or the like, but is not limited thereto.
The technical features of the above embodiments may be arbitrarily combined, and all possible combinations of the technical features in the above embodiments are not described for brevity of description, however, as long as there is no contradiction between the combinations of the technical features, they should be considered as the scope of the description.
The foregoing examples illustrate only a few embodiments of the application and are described in detail herein without thereby limiting the scope of the application. It should be noted that it will be apparent to those skilled in the art that several variations and modifications can be made without departing from the spirit of the application, which are all within the scope of the application. Accordingly, the scope of the application should be assessed as that of the appended claims.
Claims (14)
1. A device processing method, applied to a first device, the method comprising:
receiving device information of a second device; the first device and the second device belong to the same device cluster to be authenticated;
Transmitting the equipment information of the first equipment and the equipment information of the second equipment to a server so that the server can perform batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
And sending the connection certificate of the second equipment returned by the server to the second equipment so that the second equipment can be connected with the server according to the connection certificate.
2. The method of claim 1, further comprising, prior to receiving the device information for the second device:
And sending the equipment address of the first equipment to the second equipment so that the second equipment can send the equipment information of the second equipment to the first equipment according to the equipment address.
3. The method of claim 2, further comprising, prior to transmitting the device address of the first device to the second device:
responding to a batch authentication request aiming at the equipment cluster to be authenticated, and acquiring resource configuration information broadcasted by each equipment in the equipment cluster to be authenticated;
and determining the equipment meeting the preset condition from the equipment according to the resource configuration information of the equipment, and taking the equipment as the first equipment.
4. The method of claim 1, wherein the sending the device information of the first device and the device information of the second device to a server comprises:
Acquiring an equipment account number of a third equipment and a server address of the server; the third device is used for representing the device corresponding to the device account number to be associated with the first device and the second device;
generating a batch authentication request message according to the equipment information of the first equipment, the equipment information of the second equipment, the equipment account number and the server address;
Sending the batch authentication request message to the server; the server is configured to perform batch authentication on the device information of the first device and the device information of the second device according to the batch authentication request packet, associate the first device and the second device with the device account after the authentication is passed, and generate a connection credential of the second device.
5. The method of claim 1, further comprising, prior to sending the connection credential of the second device returned by the server to the second device:
receiving a batch authentication result message returned by the server; the batch authentication result message is obtained by extracting the equipment identifier of the second equipment from the equipment information of the second equipment by the server and generating according to the equipment identifier and the connection certificate of the second equipment;
Splitting the batch authentication result messages to obtain authentication result messages of the second equipment; and the authentication result message of the second equipment at least comprises the equipment identification and the connection certificate of the second equipment.
6. The method of claim 5, wherein splitting the batch of authentication result messages to obtain the authentication result message of the second device comprises:
Splitting the batch authentication result message to obtain a device identifier and a connection certificate of the second device;
and combining the equipment identifier, the connection certificate and the server address of the server of the second equipment to obtain an authentication result message of the second equipment.
7. The method of claim 6, wherein the sending the connection credential of the second device returned by the server to the second device comprises:
identifying the equipment identifier of the second equipment from the authentication result message of the second equipment;
Transmitting an authentication result message of the second device to the second device according to the device identifier of the second device, so that the second device can transmit a connection request carrying the device identifier and the connection certificate of the second device to the server according to the server address in the authentication result message; the server is used for establishing connection with the second device after the connection certificate is verified according to the device identifier.
8. A device processing method, applied to a server, the method comprising:
Receiving equipment information of a first device and equipment information of a second device, which are sent by the first device; the device information of the second device is sent to the first device by the second device, and the first device and the second device belong to the same device cluster to be authenticated;
Performing batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
and sending the connection certificate of the second device to the first device so that the first device can send the connection certificate of the second device to the second device, and the second device can be connected with the server according to the connection certificate.
9. The method of claim 8, wherein after sending the connection credential of the second device to the first device for the first device to send the connection credential of the second device to the second device, causing the second device to connect to the server according to the connection credential, further comprising:
generating a connection result of the second device;
Transmitting a connection result of the second device to the second device, so that the second device transmits the connection result of the second device to a third device; and the third device is used for summarizing the connection result of the first device and the connection result of the second device to obtain a batch authentication result of the device cluster to be authenticated.
10. A device processing apparatus for application to a first device, the apparatus comprising:
The first receiving module is used for receiving the equipment information of the second equipment; the first device and the second device belong to the same device cluster to be authenticated;
The information sending module is used for sending the equipment information of the first equipment and the equipment information of the second equipment to a server so that the server can carry out batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and after the authentication passes, a connection certificate of the second equipment is generated;
And the first sending module is used for sending the connection certificate of the second equipment returned by the server to the second equipment so that the second equipment can be connected with the server according to the connection certificate.
11. A device processing apparatus for application to a server, the apparatus comprising:
The second receiving module is used for receiving the equipment information of the first equipment and the equipment information of the second equipment, which are sent by the first equipment; the device information of the second device is sent to the first device by the second device, and the first device and the second device belong to the same device cluster to be authenticated;
the information authentication module is used for carrying out batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
And the second sending module is used for sending the connection certificate of the second equipment to the first equipment so that the first equipment can send the connection certificate of the second equipment to the second equipment, and the second equipment can be connected with the server according to the connection certificate.
12. A device processing system, wherein the system comprises a first device, a second device and a server, wherein the first device and the second device belong to the same device cluster to be authenticated;
the second device is configured to send device information of the second device to the first device;
The first device is configured to receive device information of the second device, and send the device information of the first device and the device information of the second device to a server;
The server is used for carrying out batch authentication on the equipment information of the first equipment and the equipment information of the second equipment, and generating a connection certificate of the second equipment after the authentication is passed;
the first device is further configured to send a connection credential of the second device returned by the server to the second device, so that the second device connects to the server according to the connection credential.
13. A computer device comprising a memory and a processor, the memory storing a computer program, characterized in that the processor implements the steps of the method of any one of claims 1 to 9 when the computer program is executed.
14. A computer readable storage medium, on which a computer program is stored, characterized in that the computer program, when being executed by a processor, implements the steps of the method of any of claims 1 to 9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410457354.2A CN118353633A (en) | 2024-04-16 | 2024-04-16 | Device processing method, apparatus, system, computer device and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410457354.2A CN118353633A (en) | 2024-04-16 | 2024-04-16 | Device processing method, apparatus, system, computer device and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN118353633A true CN118353633A (en) | 2024-07-16 |
Family
ID=91823855
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202410457354.2A Pending CN118353633A (en) | 2024-04-16 | 2024-04-16 | Device processing method, apparatus, system, computer device and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN118353633A (en) |
-
2024
- 2024-04-16 CN CN202410457354.2A patent/CN118353633A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104994073B (en) | Mobile phone terminal, server and its account number and apparatus bound control execute method | |
| US10650119B2 (en) | Multimedia data processing method, apparatus, system, and storage medium | |
| CN109150568B (en) | A network management method, apparatus, system, device and storage medium | |
| CN105100052B (en) | Server, mobile phone terminal and its account number and apparatus bound execution, control method | |
| CN107708099B (en) | Bluetooth device sharing request and control method and device, and readable storage medium | |
| WO2018120913A1 (en) | Certificate acquisition method, authentication method and network device | |
| CN110798471A (en) | Air conditioner management method and related device | |
| CN106464556B (en) | Node network access method, device and system | |
| CN114221822B (en) | Distribution network method, gateway device and computer readable storage medium | |
| CN110741614B (en) | Data communication system and method | |
| WO2014135050A1 (en) | Message processing method, device, gateway, set-top box and internet protocol television system | |
| CN111988660A (en) | DLNA equipment screen projection method, gateway, terminal and system | |
| CN116743850B (en) | Equipment discovery method and device based on Internet of things platform, computer equipment and storage medium | |
| CN105306485B (en) | Network access authentication method, certificate server and its place Verification System | |
| CN110519052A (en) | Data interactive method and device based on Internet of Things operating system | |
| CN113490207A (en) | Internet of things equipment binding method and device, computer equipment and storage medium | |
| CN112600820A (en) | Network connection method, device, computer equipment and storage medium | |
| CN105791359A (en) | IoT system and data interaction method | |
| WO2023221591A1 (en) | Data transmission method, and related apparatus, device and storage medium | |
| CN112689316B (en) | Binding method and device of intelligent equipment, storage medium and electronic device | |
| CN106453349A (en) | An account number login method and apparatus | |
| CN113612747B (en) | Method and device for setting device control authority, computer device and storage medium | |
| CN111866993B (en) | Wireless local area network connection management method, device, software program and storage medium | |
| CN116528394B (en) | Equipment communication connection method, mobile terminal system and equipment terminal system | |
| WO2024087384A1 (en) | Bluetooth connection establishment method, electronic device and computer storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |